7 matches found
Ollama 安全漏洞
Ollama is an open-source tool developed by Ollama that can be run locally, used for managing and customizing large language models. Versions of Ollama from 0.12.10 to 0.17.5 have security vulnerabilities. These vulnerabilities stem from the lack of integrity or authenticity verification when...
GHSA-44P7-9XX4-HF2G vulnerabilities
Vulnerabilities for packages: mattermost, hugo, mailpit, seaweedfs, rclone, ollama, hugo-extended...
Ollama <= 0.3.14 Multiple Vulnerabilities
The version of Ollama installed on the remote host is prior or equal to 0.3.14. It is, therefore, affected by multiple vulnerabilities, including the following: - A vulnerability in ollama/ollama versions =0.3.14 allows a malicious user to upload and create a customized GGUF model file on the...
Ollama < 0.1.46 Multiples Vulnerabilities
According to the self-reported version in its response header, the version of Ollama hosted on the remote web server is 0.1.46. It is, therefore, affected by a Multiples vulnerabilities : - A Path Traversal in the api/push route that exposes which files exist on the server - An Out-Of-Band Read...
Ollama < 0.1.34 Multiples Vulnerabilities
According to the self-reported version in its response header, the version of Ollama hosted on the remote web server is 0.1.34. It is, therefore, affected by a Multiples vulnerabilities : - A Remote Code Execution through models pulling - An Improper Resource Shutdown or Release through the...
Ollama Multiples Vulnerabilities
According to the self-reported version in its response header, the version of Ollama hosted on the remote is, affected by a Multiples Vulnerabilities : - File existence disclosure through the api. When calling the CreateModel route with a path parameter that does not exist - A Denial Of Service...
Ollama < 0.1.46 Multiple Vulnerabilities
The version of Ollama installed on the remote host is prior to 0.1.46. It is, therefore, affected by multiple vulnerabilities: - An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF...