CVE-2025-7647
BaseFortify
Publication date: 2025-09-27
Last updated on: 2025-09-29
Assigner: huntr.dev
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| llama-index | llama-index-core | 0.12.44 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-378 | Opening temporary files without appropriate measures or controls can leave the file, its contents and any function that it impacts vulnerable to attack. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the llama-index-core package up to version 0.12.44, specifically in the get_cache_dir() function. It uses a predictable, hardcoded directory path (/tmp/llama_index) on Linux systems without proper security controls. This allows attackers on multi-user systems to exploit the shared directory to steal proprietary models, poison cached embeddings, or perform symlink attacks. The issue relates to insecure temporary file creation and potential race conditions.
How can this vulnerability impact me? :
If you run the vulnerable version of llama-index-core on a Linux system shared by multiple users, attackers could exploit the predictable cache directory to steal sensitive proprietary models, corrupt cached data by poisoning embeddings, or execute symlink attacks that may lead to unauthorized access or data manipulation. This can compromise confidentiality, integrity, and availability of your data and models.