VDB
CVE-2024-39720
CVE-2024-39720
PUBLISHED
CVSS 8.800000190734863 HIGH
An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leveraging a custom Modelfile that includes a FROM statement pointing to the attacker-controlled blob file, the attacker can crash the application through the CreateModel route, leading to a segmentation fault (signal SIGSEGV: segmentation violation).
EPSS 0.29% · 52.3th percentile
Risk Scores
CVSS 4.0
8.800000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.29%
52.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ollama | ollama | 0, 0 |
| n/a | n/a | *, n/a |
| ollama | ollama | 0, 0 |
| github.com | ollama/ollama | 0, 0 |
Exploit Intelligence
- https://oligo.security/blog/more-models-more-probllms (nist-nvd)
- CIRCL seen: CVE-2024-39720 (circl-sighting)
- CIRCL seen: CVE-2024-39720 (circl-sighting)
- CIRCL seen: CVE-2024-39720 (circl-sighting)
- https://github.com/ollama/ollama/compare/v0.1.45...v0.1.46#diff-782c2737eecfa83b7cb46a77c8bdaf40023e7067baccd4f806ac5517b4563131L417 (circl)
Timeline
- Oct 31, 2024 CVE Published
- Oct 31, 2024 Coalition ESS Score
- Oct 31, 2024 PoC Published
- Nov 1, 2024 EPSS Score
- Nov 7, 2024 Coalition ESS Score
- Nov 19, 2024 EPSS Score
- Dec 8, 2024 EPSS Score
- Dec 26, 2024 EPSS Score
- Jan 13, 2025 EPSS Score
- Jan 31, 2025 EPSS Score
- Feb 18, 2025 EPSS Score
- Mar 8, 2025 EPSS Score
References
- https://github.com/ollama/ollama package
- https://github.com/ollama/ollama/compare/v0.1.45...v0.1.46#diff-782c2737eecfa83b7cb46a77c8bdaf40023e7067baccd4f806ac5517b4563131L417 url
- https://oligo.security/blog/more-models-more-probllms url
- https://nvd.nist.gov/vuln/detail/CVE-2024-39720 advisory
- https://oligosecurity.webflow.io/blog/more-models-more-probllms url
- https://pkg.go.dev/vuln/GO-2024-3245 url