Lucene search
K

54 matches found

Vulnrichment
Vulnrichment
added 2025/11/21 6:57 p.m.8 views

CVE-2025-62609 MLX has Wild Pointer Dereference in load_gguf()

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This iss...

6.9CVSS6.2AI score0.00328EPSS
Exploits1References1
OSV
OSV
added 2025/11/21 6:57 p.m.8 views

CVE-2025-62609 MLX has Wild Pointer Dereference in load_gguf()

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This iss...

6.9CVSS6.5AI score0.00328EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-19448

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-21099

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-19437

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-19414

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01375EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-20992

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 11:3 a.m.6 views

CVE-2024-21802

A heap-based buffer overflow vulnerability exists in the GGUF library info-ne functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.4AI score0.01375EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:51 a.m.8 views

CVE-2024-21825

A heap-based buffer overflow vulnerability exists in the GGUF library GGUFTYPEARRAY/GGUFTYPESTRING parsing functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.5AI score0.01349EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:47 a.m.6 views

CVE-2024-21836

A heap-based buffer overflow vulnerability exists in the GGUF library header.ntensors functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.4AI score0.01349EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:16 a.m.11 views

CVE-2024-23605

A heap-based buffer overflow vulnerability exists in the GGUF library header.nkv functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.6AI score0.01349EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:14 a.m.6 views

CVE-2024-23496

A heap-based buffer overflow vulnerability exists in the GGUF library gguffreadstr functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.6AI score0.01349EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.5 views

The vulnerability of the `info->ne` function in the llama.cpp file of the GGUF library allows a hacker to execute arbitrary code.

The vulnerability of the info-ne function in the llama.cpp file of the GGUF library is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.5AI score0.01375EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/03/07 12:0 a.m.46 views

The vulnerability of the GGUF_TYPE_ARRAY/GGUF_TYPE_STRING component in the llama.cpp file of the GGUF library allows a attacker to execute arbitrary code.

The vulnerability of the GGUFTYPEARRAY/GGUFTYPESTRING component in the llama.cpp file of the GGUF library is related to integer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.01349EPSS
Exploits1References4
NVD
NVD
added 2024/02/26 4:27 p.m.11 views

CVE-2024-23605

A heap-based buffer overflow vulnerability exists in the GGUF library header.nkv functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
NVD
NVD
added 2024/02/26 4:27 p.m.17 views

CVE-2024-23496

A heap-based buffer overflow vulnerability exists in the GGUF library gguffreadstr functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
OSV
OSV
added 2024/02/26 4:27 p.m.3 views

CVE-2024-21836

A heap-based buffer overflow vulnerability exists in the GGUF library header.ntensors functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.7AI score0.01349EPSS
Exploits1References2
NVD
NVD
added 2024/02/26 4:27 p.m.13 views

CVE-2024-21836

A heap-based buffer overflow vulnerability exists in the GGUF library header.ntensors functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
NVD
NVD
added 2024/02/26 4:27 p.m.23 views

CVE-2024-21802

A heap-based buffer overflow vulnerability exists in the GGUF library info-ne functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS9AI score0.01375EPSS
Exploits1References2
NVD
NVD
added 2024/02/26 4:27 p.m.17 views

CVE-2024-21825

A heap-based buffer overflow vulnerability exists in the GGUF library GGUFTYPEARRAY/GGUFTYPESTRING parsing functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS9AI score0.01349EPSS
Exploits1References2
Rows per page
Query Builder