CVE-2025-5472

Public Exploit
Denial of Service via Uncontrolled Recursive JSON Parsing in JSONReader in run-llama/llama_index

Description

The JSONReader in run-llama/llama_index versions 0.12.28 is vulnerable to a stack overflow due to uncontrolled recursive JSON parsing. This vulnerability allows attackers to trigger a Denial of Service (DoS) by submitting deeply nested JSON structures, leading to a RecursionError and crashing applications. The root cause is the unsafe recursive traversal design and lack of depth validation, which makes the JSONReader susceptible to stack overflow when processing deeply nested JSON. This impacts the availability of services, making them unreliable and disrupting workflows. The issue is resolved in version 0.12.38.

Category

6.5
CVSS
Severity: Medium
CVSS 3.0 •
EPSS 0.05%
Third-Party Advisory huntr.com
Affected: run-llama run-llama/llama_index
Published at:
Updated at:

References

Link Tags
https://huntr.com/bounties/df187bda-7911-4823-a19a-e15b2c66b0d4 third party advisory exploit
https://github.com/run-llama/llama_index/commit/c032843a02ce38fd8f284b2aa5a37fd1c17ae635 patch

Frequently Asked Questions

What is the severity of CVE-2025-5472?
CVE-2025-5472 has been scored as a medium severity vulnerability.
How to fix CVE-2025-5472?
To fix CVE-2025-5472, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-5472 being actively exploited in the wild?
It is possible that CVE-2025-5472 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-5472?
CVE-2025-5472 affects run-llama run-llama/llama_index.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.