- Description
- A vulnerability in the `ObsidianReader` class of the run-llama/llama_index repository, versions 0.12.23 to 0.12.28, allows for arbitrary file read through symbolic links. The `ObsidianReader` fails to resolve symlinks to their real paths and does not validate whether the resolved paths lie within the intended directory. This flaw enables attackers to place symlinks pointing to files outside the vault directory, which are then processed as valid Markdown files, potentially exposing sensitive information.
- Source
- security@huntr.dev
- NVD status
- Awaiting Analysis
CVSS 3.0
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
- security@huntr.dev
- CWE-22
- Hype score
- Not currently trending
CVE-2025-3046 A vulnerability in the `ObsidianReader` class of the run-llama/llama_index repository, versions 0.12.23 to 0.12.28, allows for arbitrary file read through symbolic link… https://t.co/gxCD1HtPM8
@CVEnew
7 Jul 2025
457 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
I'm proud to share that I earned a $750 AI/ML bug bounty for discovering CVE-2025-3046, a high-severity (CVSS 7.5) path traversal vulnerability in LLaMA-Index exploitable via symlinks: https://t.co/7hXMkisQ3w https://t.co/5dqnwxTqoB
@_MrNiko
11 Jun 2025
1063 Impressions
0 Retweets
26 Likes
7 Bookmarks
3 Replies
0 Quotes