CVE-2025-3046 – llama-index-readers-obsidian

Package

Manager: pip
Name: llama-index-readers-obsidian
Vulnerable Version: >=0 <0.5.1

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.0009 pctl0.26477

Details

LlamaIndex is vulnerable to Path Traversal attack through its ObsidianReader class A vulnerability in the `ObsidianReader` class in LlamaIndex Readers Integration: Obsidian before version 0.5.1 from the run-llama/llama_index repository (versions 0.12.23 to 0.12.28) allows for arbitrary file read through symbolic links. The `ObsidianReader` fails to resolve symlinks to their real paths and does not validate whether the resolved paths lie within the intended directory. This flaw enables attackers to place symlinks pointing to files outside the vault directory, which are then processed as valid Markdown files, potentially exposing sensitive information.

Metadata

Created: 2025-07-07T12:30:22Z
Modified: 2025-07-07T23:35:32Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/07/GHSA-fmrf-6jv9-qjc7/GHSA-fmrf-6jv9-qjc7.json
CWE IDs: ["CWE-22"]
Alternative ID: GHSA-fmrf-6jv9-qjc7
Finding: F063
Auto approve: 1