CVE-2024-14021 | run-llama llama_index up to 0.11.6 base.py BGEM3Index.load_from_disk deserialization

A vulnerability identified as problematic has been detected in run-llama llama_index up to 0.11.6. Affected by this issue is the function BGEM3Index.load_from_disk of the file llama_index/indices/managed/bge_m3/base.py. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-14021. Local access is required to approach this attack. No exploit exists.VulDB Recent EntriesRead More