CVE-2024-23751 — SQL injection in llama-index

Description

LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feature in NLSQLTableQueryEngine, SQLTableRetrieverQueryEngine, NLSQLRetriever, RetrieverQueryEngine, and PGVectorSQLQueryEngine. For example, an attacker might be able to delete this year's student records via "Drop the Students table" within English language input.

How to fix CVE-2024-23751

To remediate CVE-2024-23751, upgrade the affected package to a fixed version below.

—no fix listed
—upgrade to 0.9.35 or later

Is CVE-2024-23751 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, <= 0.9.35
from 0, < 0.9.35

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (5)

ADVISORYgithub.com/advisories/GHSA-2jxw-4hm4-6w87
ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-23751
PATCHgithub.com/run-llama/llama_index
WEBgithub.com/pypa/advisory-database/tree/main/vulns/llama-index/PYSEC-2024-12.yaml
WEB