CVE-2024-11958

A SQL injection vulnerability exists in the `duckdb_retriever` component of the run-llama/llama_index repository, specifically in the latest version. The vulnerability arises from the construction of SQL queries without using prepared statements, allowing an attacker to inject arbitrary SQL code. This can lead to remote code execution (RCE) by installing the shellfs extension and executing malicious commands.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/run-llama/llama_index/commit/35bd221e948e40458052d30c6ef2779bc965b6d0	Patch
https://huntr.com/bounties/8ddf66e1-f74c-4d53-992b-76bc45cacac1	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:llamaindex:llamaindex:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-03-20 10:15

Updated : 2025-07-29 18:57

NVD link : CVE-2024-11958

Mitre link : CVE-2024-11958

CVE.ORG link : CVE-2024-11958

JSON object : View

Products Affected

llamaindex

llamaindex

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2024-11958", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-03-20T10:15:26.030", "references": [{"url": "https://github.com/run-llama/llama_index/commit/35bd221e948e40458052d30c6ef2779bc965b6d0", "tags": ["Patch"], "source": "[email protected]"}, {"url": "https://huntr.com/bounties/8ddf66e1-f74c-4d53-992b-76bc45cacac1", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "A SQL injection vulnerability exists in the `duckdb_retriever` component of the run-llama/llama_index repository, specifically in the latest version. The vulnerability arises from the construction of SQL queries without using prepared statements, allowing an attacker to inject arbitrary SQL code. This can lead to remote code execution (RCE) by installing the shellfs extension and executing malicious commands."}, {"lang": "es", "value": "Existe una vulnerabilidad de inyecci\u00f3n SQL en el componente `duckdb_retriever` del repositorio run-llama/llama_index, concretamente en la \u00faltima versi\u00f3n. Esta vulnerabilidad surge de la construcci\u00f3n de consultas SQL sin usar sentencias preparadas, lo que permite a un atacante inyectar c\u00f3digo SQL arbitrario. Esto puede provocar la ejecuci\u00f3n remota de c\u00f3digo (RCE) al instalar la extensi\u00f3n shellfs y ejecutar comandos maliciosos."}], "lastModified": "2025-07-29T18:57:39.893", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:llamaindex:llamaindex:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E4975FF-6556-41BF-9800-9AB131D9C41C", "versionEndExcluding": "0.4.0"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}