Deserialization Vulnerability in JsonPickleSerializer of run-llama's Library
CVE-2025-3108

5MEDIUM

Key Information:

Vendor: Run-llama
Status: Run-llama/llama Index
Vendor: CVE Published:; 6 July 2025

What is CVE-2025-3108?

A deserialization vulnerability exists in the JsonPickleSerializer component of the run-llama/llama_index library, spanning versions v0.12.27 to v0.12.40. This flaw stems from an insecure fallback to Python's pickle module, which can execute arbitrary code upon processing untrusted data. Attackers can exploit this vulnerability by crafting malicious payloads that compromise system integrity. The absence of appropriate validation, design flaws, and a breach of established Python security guidelines contribute to this critical security risk. Remediation is strongly recommended to protect against potential remote code execution threats.

Affected Version(s)

run-llama/llama_index < unspecified

References

https://huntr.com/bounties/9b55a5e8-74e6-4241-b323-e360dc...

https://github.com/run-llama/llama_index/commit/702e43406...

CVSS V3.0

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 6, 2025
Vulnerability Reserved
Apr 2, 2025

Run-llama

What is CVE-2025-3108?

Affected Version(s)

References

CVSS V3.0

Timeline