CVE-2024-5826

Name of the Vulnerable Software and Affected Versions: vanna-ai/vanna (affected versions not specified)

Description: The issue is related to remote code execution due to prompt injection in the vanna.ask function. This is caused by the lack of a sandbox when executing LLM-generated code, allowing an attacker to manipulate the code executed by the exec function in src/vanna/base/base.py. An attacker can exploit this to achieve remote code execution on the app backend server, potentially gaining full control of the server.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.