CVE-2024-12366

Description

PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM. The security controls of PandasAI (2.4.3 and earlier) fail to distinguish between legitimate and malicious inputs, allowing the attackers to manipulate the system into executing untrusted code, leading to untrusted code execution (RCE), system compromise, or pivoting attacks on connected services.

How to fix CVE-2024-12366

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

• —no fix listed

Is CVE-2024-12366 being exploited?

Moderate — EPSS is 7.8%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, <= 2.4.2

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-12366
• PATCHgithub.com/sinaptik-ai/pandas-ai
• WEBdocs.getpanda.ai/v3/privacy-security
• WEBdocs.pandas-ai.com/advanced-security-agent
• WEBwww.kb.cert.org/vuls/id/148244