CVE-2024-12366
published 2025-02-11CVE-2024-12366: PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE)…
PriorityP261critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.22%
64.9th percentile
PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sinaptik_ai | pandasai | — | — |
| sinaptik_ai | pandasai | 0 – 2.4.2 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
PandasAI interactive prompt function Remote Code Execution (RCE)
osv·2025-02-11
CVE-2024-12366 [CRITICAL] PandasAI interactive prompt function Remote Code Execution (RCE)
PandasAI interactive prompt function Remote Code Execution (RCE)
PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM. The security controls of PandasAI (2.4.3 and earlier) fail to distinguish between legitimate and malicious inputs, allowing the attackers to manipulate the system into executing untrusted code, leading to untrusted code execution (RCE), system compromise, or pivoting attacks on connected services.
GHSA
PandasAI interactive prompt function Remote Code Execution (RCE)
ghsa·2025-02-11
CVE-2024-12366 [CRITICAL] CWE-94 PandasAI interactive prompt function Remote Code Execution (RCE)
PandasAI interactive prompt function Remote Code Execution (RCE)
PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM. The security controls of PandasAI (2.4.3 and earlier) fail to distinguish between legitimate and malicious inputs, allowing the attackers to manipulate the system into executing untrusted code, leading to untrusted code execution (RCE), system compromise, or pivoting attacks on connected services.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-02-11
Published