Description
A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0.12.40, specifically within the `encode_image` function in `generic_utils.py`. This vulnerability allows an attacker to manipulate the `image_path` input to read arbitrary files on the server, including sensitive system files. The issue arises due to improper validation or sanitization of the file path, enabling path traversal sequences to access files outside the intended directory. The vulnerability is fixed in version 0.12.41.
References (2)
Core 2
Core References
Exploit, Third Party Advisory
https://huntr.com/bounties/e89d14f8-bfe8-4c9a-bb2a-656c01cc9a68
Scores
CVSS v3
7.5
EPSS
0.0054
EPSS Percentile
41.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-29
Status
published
Products (2)
llamaindex/llamaindex
0.12.27 - 0.12.41
pypi/llama-index-core
0.11.23 - 0.12.41PyPI
Published
Jul 07, 2025
Tracked Since
Feb 18, 2026