CVE-2025-3046: 
Python vulnerability analysis and mitigation

A vulnerability has been identified in the ObsidianReader class of the run-llama/llama_index repository, affecting versions 0.12.23 through 0.12.28. The vulnerability was disclosed on July 7, 2025, and has been assigned identifier CVE-2025-3046. This security flaw allows for arbitrary file read operations through symbolic links (NVD).

The vulnerability stems from the ObsidianReader class's failure to properly resolve symbolic links to their real paths and validate whether the resolved paths lie within the intended directory. This implementation flaw has been classified as CWE-22 (Improper Limitation of a Pathname to a Restricted Directory) and received a CVSS v3.0 base score of 7.5 (HIGH) with vector string CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (NVD, Huntr).

The vulnerability enables attackers to place symlinks pointing to files outside the vault directory, which are then processed as valid Markdown files. This can lead to the exposure of sensitive information from anywhere on the system that the application has read access to (NVD).

A fix has been implemented in the llama-index-readers-obsidian package version 0.5.1 to prevent path traversal from symlinks. Users are advised to upgrade to this version or later (Github).