CVE-2024-39720
published 2024-10-31CVE-2024-39720: An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with…
PriorityP345high8.2CVSS 3.1
AVNACLPRNUINSUCLINAH
EPSS
2.48%
82.6th percentile
An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leveraging a custom Modelfile that includes a FROM statement pointing to the attacker-controlled blob file, the attacker can crash the application through the CreateModel route, leading to a segmentation fault (signal SIGSEGV: segmentation violation).
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | ollama_ollama | >= 0 < 0.1.46 | 0.1.46 |
| ollama | ollama | < 0.1.46 | 0.1.46 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Ollama Out-of-bounds Read in github.com/ollama/ollama
osv·2024-11-01
CVE-2024-39720 Ollama Out-of-bounds Read in github.com/ollama/ollama
Ollama Out-of-bounds Read in github.com/ollama/ollama
Ollama Out-of-bounds Read in github.com/ollama/ollama
OSV
Ollama Out-of-bounds Read
osv·2024-10-31
CVE-2024-39720 [HIGH] Ollama Out-of-bounds Read
Ollama Out-of-bounds Read
An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leveraging a custom Modelfile that includes a FROM statement pointing to the attacker-controlled blob file, the attacker can crash the application through the CreateModel route, leading to a segmentation fault (signal SIGSEGV: segmentation violation).
GHSA
Ollama Out-of-bounds Read
ghsa·2024-10-31
CVE-2024-39720 [HIGH] CWE-125 Ollama Out-of-bounds Read
Ollama Out-of-bounds Read
An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leveraging a custom Modelfile that includes a FROM statement pointing to the attacker-controlled blob file, the attacker can crash the application through the CreateModel route, leading to a segmentation fault (signal SIGSEGV: segmentation violation).
No detection rules found.
No public exploits indexed.
Wiz
Crying Out Cloud - December 2024 Newsletter | Wiz
blogs_wiz·2024-12-12·CVSS 9.3
CVE-2024-0012 [CRITICAL] Crying Out Cloud - December 2024 Newsletter | Wiz
Welcome back! In this edition, we bring you the latest in cloud security – noteworthy incidents, exclusive data, and crucial vulnerabilities.
Here are our top picks!
🔍 Highlights
RCE Vulnerability in PAN-OS
Palo Alto Networks has confirmed the active exploitation of a critical remote code execution vulnerability chain (CVE-2024-0012, CVE-2024-9474) in the PAN-OS management interface. This vulnerability allows an unauthenticated attacker with network access to the management interface to bypass authentication, obtain administrator privileges, and perform administrative actions. Exploitation has been observed since November 17, 2024.
Learn more in our blog .
🐞 High Profile Vulnerabilities
Critical Vulnerability in Spring WebFlux
A critical vulnerability, CVE-2024-38821, was identifie
Trendmicro
The Road to Agentic AI: Exposed Foundations
blogs_trendmicro·2024-12-04
The Road to Agentic AI: Exposed Foundations
Artificial Intelligence (AI)
# The Road to Agentic AI: Exposed Foundations
Our research into Retrieval Augmented Generation (RAG) systems uncovered at least 80 unprotected servers. We highlight this problem, which can lead to potential data loss and unauthorized access.
By: Morton Swimmer, Philippe Lin, Vincenzo Ciancaglini, Marco Balduzzi, Stephen Hilt
2024/12/04
Read time: ( words)
Save to Folio
Report highlights:
- Retrieval augmented generation (RAG) enables enterprises to build customized, efficient, and cost-effective applications based on private data. However, research reveals significant security risks, such as exposed vector stores and LLM-hosting platforms, which can lead to data leaks, unauthorized access, and potential system manipulation if not properly secured.
- Secu
2024-10-31
Published