Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2026/01/23 12:28 a.m.4 views

SUSE CVE-2025-66960

An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the fs/ggml/gguf.go, function readGGUFV1String reads a string length from untrusted GGUF metadata...

7.5CVSS5.6AI score0.00362EPSS
Exploits1References3
Snyk
Snyk
added 2026/01/21 12:0 a.m.2 views

Improper Handling of Length Parameter Inconsistency

Overview Affected versions of this package are vulnerable to Improper Handling of Length Parameter Inconsistency in readGGUFString. An attacker can cause the service to become unavailable by supplying malicious GGUF metadata. Details Denial of Service DoS describes a family of attacks, all aimed ...

8.7CVSS5.9AI score0.04549EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/21 12:0 a.m.9 views

PT-2026-3790

Name of the Vulnerable Software and Affected Versions Ollama versions prior to 0.12.10 Description An issue exists in the readGGUFV1String function within the Ollama large language model LLM launch and management system. Insufficient input validation in this function can allow a remote attacker t...

7.8CVSS5.5AI score0.00362EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2026/01/21 12:0 a.m.5 views

CVE-2025-66960

An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the fs/ggml/gguf.go, function readGGUFV1String reads a string length from untrusted GGUF metadata...

7.5CVSS5.5AI score0.00362EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/21 12:0 a.m.63 views

CVE-2025-66960

An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the fs/ggml/gguf.go, function readGGUFV1String reads a string length from untrusted GGUF metadata...

0.00362EPSS
Exploits1References2
CVE
CVE
added 2026/01/21 12:0 a.m.25 views

CVE-2025-66960

CVE-2025-66960 affects Ollama v0.12.10 and earlier where the function readGGUFV1String in fs/ggml/gguf.go reads a string length from untrusted GGUF metadata, enabling a remote attacker to cause a denial-of-service. Multiple connected sources (SUSE, Red Hat, OSV, NVD, PT Security) describe the DoS...

7.5CVSS5.6AI score0.00362EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder