7 matches found
CVE-2025-44779
An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to the endpoint /api/pull...
CVE-2025-0313
...
CVE-2025-0317 Divide By Zero in ollama/ollama
A vulnerability in ollama/ollama versions =0.3.14 allows a malicious user to upload and create a customized GGUF model file on the Ollama server. This can lead to a division by zero error in the ggufPadding function, causing the server to crash and resulting in a Denial of Service DoS attack...
CVE-2024-39720
CVE-2024-39720 affects Ollama prior to 0.1.46. An attacker can craft and send two HTTP requests to upload a malformed GGUF file (4 bytes) beginning with the GGUF header, using a malicious Modelfile that FROM-references an attacker-controlled blob file. This triggers a crash in the CreateModel rou...
CVE-2024-39720
An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leveraging a custom Modelfile that includes a FROM statement pointing to the attacker-controlled blob file,...
CVE-2024-39722
CVE-2024-39722 affects Ollama prior to 0.1.46. A path traversal in the /api/push route can disclose which files exist on the server (information disclosure). The issue has been referenced across multiple feeds (Red Hat, NVD, SUSE, OSS/OSV) and is graded CVSSv3.1 v3.1 with a base score of 7.5 (Hig...
CVE-2024-39721
An issue was discovered in Ollama before 0.1.34. The CreateModelHandler function uses os.Open to read a file until completion. The req.Path parameter is user-controlled and can be set to /dev/random, which is blocking, causing the goroutine to run infinitely even after the HTTP request is aborted...