Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2026/04/30 2:29 a.m.7 views

SUSE CVE-2026-7020

A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote...

6.3CVSS5.2AI score0.00908EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2026/04/28 8:54 a.m.5 views

CVE-2026-7020

A flaw was found in Ollama, specifically within the Tensor Model Transfer Handler component. A remote attacker can exploit this vulnerability by manipulating the digest argument in the digestToPath function, leading to a path traversal. This allows unauthorized access to files or directories on t...

6.3CVSS5.2AI score0.00908EPSS
Exploits2References6
Vulnrichment
Vulnrichment
added 2026/04/26 4:45 a.m.6 views

CVE-2026-7020 Ollama Tensor Model Transfer transfer.go digestToPath path traversal

A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote...

6.3CVSS5.4AI score0.00908EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/04/26 4:45 a.m.36 views

CVE-2026-7020 Ollama Tensor Model Transfer transfer.go digestToPath path traversal

A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote...

6.3CVSS0.00908EPSS
Exploits2References3
CVE
CVE
added 2026/04/26 4:45 a.m.35 views

CVE-2026-7020

CVE-2026-7020 affects Ollama up to version 0.20.2. The vulnerability lies in the digestToPath function (x/imagegen/transfer/transfer.go) where manipulating the digest enables path traversal. The attack can be performed remotely and is described as high complexity with a documented PoC/exploit. Co...

6.3CVSS5.4AI score0.00908EPSS
Exploits2References3Affected Software1
CNNVD
CNNVD
added 2026/04/26 12:0 a.m.13 views

Ollama 路径遍历漏洞

Ollama is an open-source tool developed by Ollama that can be run locally, used for managing and customizing large language models. Ollama versions 0.20.2 and earlier had a path traversal vulnerability. This vulnerability stemmed from the operation of the digestToPath function in the Tensor Model...

6.3CVSS5.8AI score0.00908EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.9 views

PT-2026-35201

A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote...

6.3CVSS5.2AI score0.00908EPSS
Exploits2References4
Rows per page
Query Builder