CVE-2025-7647 | run-llama llama_index up to 0.12.x on Linux /tmp/llama_index get_cache_dir temp file

September 27, 2025 Yanac

A vulnerability was found in run-llama llama_index up to 0.12.x on Linux. It has been rated as problematic. This affects the function get_cache_dir of the file /tmp/llama_index. The manipulation leads to creation of temporary file with insecure permissions.

This vulnerability is uniquely identified as CVE-2025-7647. Local access is required to approach this attack. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More