CVE security advisories and vulnerability history for llama_index by run-llama.
29
Total CVEs
Published
0
In CISA KEV
Exploited in the wild
26
Public exploits
With known exploit
7.8
Avg CVSS
2023–2026
Last updated
Overview
run-llama llama_index has 29 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 26 have a known public exploit. The average CVSS base score across scored CVEs is 7.8.
This page aggregates every publicly disclosed vulnerability (CVE) affecting run-llama llama_index, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
Severity and exploitation
How the CVSS severity of run-llama llama_index's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
Critical7
High14
Medium7
Low0
1 additional CVE has no CVSS severity score.
In CISA’s Known Exploited Vulnerabilities catalog
0
None of run-llama llama_index's CVEs are currently listed in CISA's KEV catalog.
Public exploits
26
26 of run-llama llama_index's CVEs have a known public exploit available.
Affected versions and CVEs
Browse every run-llama llama_index version named in a CVE, then pick one to see only the CVEs that affect it.
Common questions about run-llama llama_index vulnerabilities.
How many CVEs does run-llama llama_index have?
run-llama llama_index has 29 published CVE records since 2023.
How many run-llama llama_index CVEs are in CISA KEV?
None of run-llama llama_index's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Are there public exploits for run-llama llama_index vulnerabilities?
Yes — 26 of run-llama llama_index's CVEs have a known public exploit.
Which versions of run-llama llama_index are affected?
276 distinct run-llama llama_index versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
What are the most common weakness types in run-llama llama_index CVEs?
run-llama llama_index's CVEs most often map to these CWE weakness types: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-674 (Uncontrolled Recursion), CWE-94 (Improper Control of Generation of Code ('Code Injection')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')).
How many critical run-llama llama_index vulnerabilities are there?
run-llama llama_index has 7 critical and 14 high-severity CVEs.
What is the average severity of run-llama llama_index CVEs?
The average CVSS base score across run-llama llama_index's scored CVEs is 7.8.
