CVE-2024-12909

A vulnerability in the FinanceChatLlamaPack of the run-llama/llama_index repository, versions up to v0.12.3, allows for SQL injection in the run_sql_query function of the database_agent. This vulnerability can be exploited by an attacker to inject arbitrary SQL queries, leading to remote code execution (RCE) through the use of PostgreSQL's large object functionality. The issue is fixed in version 0.3.0.

Published: Mar 20, 2025
Updated: Aug 11, 2025
CVE: CVE-2024-12909
GHSA: GHSA-x48g-hm9c-ww42
Severity: Critical
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
llama-index-packs-finchat	-	0.3.0.x
llamaindex / llamaindex	-	0.3.0

https://github.com/run-llama/llama_index/commit/5d03c175476452db9b8abcdb7d5767dd7b310a75
https://github.com/run-llama/llama_index/tree/stale_packages/llama-index-packs/llama-index-packs-finchat
https://huntr.com/bounties/44e8177f-200a-4ba3-a12c-8bc21e313a3f

Vulnerability Database

CVE-2024-12909