CVE-2026-7020 Ollama Tensor Model Transfer transfer.go digestToPath path traversal

🗓️ 26 Apr 2026 04:45:11Reported by VulDBType

Path traversal in Ollama up to 0.20.2 via digestToPath in transfer.go allows remote attack.

Reporter	Title	Published	Views	Family All 16
GithubExploit	Exploit for CVE-2026-7020	25 Apr 202617:16	–	githubexploit
ATTACKERKB	CVE-2026-7020	26 Apr 202604:45	–	attackerkb
Circl	CVE-2026-7020	25 Apr 202619:00	–	circl
CNNVD	Ollama 路径遍历漏洞	26 Apr 202600:00	–	cnnvd
CVE	CVE-2026-7020	26 Apr 202604:45	–	cve
EUVD	EUVD-2026-25695	26 Apr 202604:45	–	euvd
Github Security Blog	Ollama is Vulnerable to Path Traversal	26 Apr 202606:31	–	github
NVD	CVE-2026-7020	26 Apr 202605:16	–	nvd
OSV	GHSA-X99G-8V8J-25J2 Ollama is Vulnerable to Path Traversal	26 Apr 202606:31	–	osv
OSV	MINI-3XQH-W656-WMP7	2 May 202615:00	–	osv

[
  {
    "vendor": "n/a",
    "product": "Ollama",
    "versions": [
      {
        "version": "0.20.0",
        "status": "affected"
      },
      {
        "version": "0.20.1",
        "status": "affected"
      },
      {
        "version": "0.20.2",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:ollama:ollama:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Tensor Model Transfer Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/359599/cti
vuldb	www.vuldb.com/submit/797576
vuldb	www.vuldb.com/vuln/359599

06 May 2026 04:55Current

CVSS 22.6

CVSS 3.13.7

CVSS 33.7

CVSS 46.3

EPSS0.00104

CWE-22