CVE-2023-39662

Description

An issue in llama_index v.0.7.13 and before allows a remote attacker to execute arbitrary code via the `exec` parameter in PandasQueryEngine function.

Related CPE's

Could not find any relations

References

https://github.com/jerryjliu/llama_index/issues/7054

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io