CVE-2024-11958: LlamaIndex Retrievers Integration: DuckDBRetriever SQL Injection

March 20, 2025 (updated May 28, 2025)

A SQL injection vulnerability exists in the duckdb_retriever component of the run-llama/llama_index repository, specifically in llama-index-retrievers-duckdb-retriever prior to v0.4.0. The vulnerability arises from the construction of SQL queries without using prepared statements, allowing an attacker to inject arbitrary SQL code. This can lead to remote code execution (RCE) by installing the shellfs extension and executing malicious commands.

References

github.com/advisories/GHSA-339r-cjv9-x78g
github.com/run-llama/llama_index
github.com/run-llama/llama_index/commit/35bd221e948e40458052d30c6ef2779bc965b6d0
huntr.com/bounties/8ddf66e1-f74c-4d53-992b-76bc45cacac1
nvd.nist.gov/vuln/detail/CVE-2024-11958

Code Behaviors & Features

Detect and mitigate CVE-2024-11958 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →