CVE-2024-12366 - PandasAI LLM Remote Code Execution Vulnerability
CVE ID : CVE-2024-12366 Published : Feb. 11, 2025, 1:15 p.m. | 2 hours, 29 minutes ago Description : PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2024-12366
Published : Feb. 11, 2025, 1:15 p.m. | 2 hours, 29 minutes ago
Description : PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : Feb. 11, 2025, 1:15 p.m. | 2 hours, 29 minutes ago
Description : PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
