CVE-2025-7707 | run-llama llama_index up to 0.12.x NLTK Data temp file

A vulnerability was found in run-llama llama_index up to 0.12.x. It has been rated as problematic. The affected element is an unknown function of the component NLTK Data Handler. Performing manipulation results in insecure temporary file.

This vulnerability is known as CVE-2025-7707. Attacking locally is a requirement. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More