Run-llama Llama_index

2 CVEs affecting Run-llama Llama_index. Latest disclosed: 2026-01-12. Critical: 0, High: 2.

Top CVEs affecting Run-llama Llama_index
CVESeverityScorePublishedSummary
CVE-2024-14021High7.82026-01-12LlamaIndex (run-llama/llama_index) versions up to and including 0.11.6 contain an unsafe deserialization vulnerability in BGEM3Index.load_from_disk() in llama_…
CVE-2024-58339High7.52026-01-12LlamaIndex (run-llama/llama_index) versions up to and including 0.12.2 contain an uncontrolled resource consumption vulnerability in the VannaPack VannaQueryEn…