Launch Week Day 1: Announcing Security Design Review
Start for Free
pypi

llama-index-core

View on pypi registry
10 Total advisories
10 Vulnerabilities
0 Malware

Vulnerabilities

HIGH 7.5
PyPI

CVE-2024-12704

LlamaIndex Improper Handling of Exceptional Conditions vulnerability
HIGH 7.3
PyPI

CVE-2025-7647

llama-index-core insecurely handles temporary files
MEDIUM 5.3
PyPI

CVE-2025-6208

llama-index-core vulnerable to Uncontrolled Resource Consumption
HIGH 8.6
PyPI

CVE-2025-5302

LlamaIndex affected by a Denial of Service (DOS) in JSONReader
HIGH 7.5
PyPI

CVE-2025-6209

LlamaIndex vulnerable to Path Traversal attack through its encode_image function
MEDIUM 6.5
PyPI

CVE-2025-5472

LlamaIndex vulnerable to DoS attack through uncontrolled recursive JSON parsing
MEDIUM 5.0
PyPI

CVE-2025-3108

LlamaIndex has Incomplete Documentation of Program Execution related to JsonPickleSerializer component
CRITICAL 9.8
PyPI

CVE-2024-45201

LlamaIndex includes an exec call for `import {cls_name}`
CRITICAL 9.8
PyPI

CVE-2024-3271

llama-index-core Command Injection vulnerability
CRITICAL 9.8
PyPI

CVE-2024-3098

llama-index-core Prompt Injection vulnerability leading to Arbitrary Code Execution

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes