Github.com/ollama/ollama

This hub aggregates every CVE we track for Github.com/ollama/ollama, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 14 most recently published vulnerabilities affecting Github.com/ollama/ollama.

• CVE-2025-63389A critical authentication bypass vulnerability exists in Ollama platform's API endpoints in versions prior to and including v0.12.3. The platform exposes multiple API endpoints without requiring au...9.8Dec 18, 2025
• CVE-2025-44779An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to the endpoint /api/pull.6.6Aug 7, 2025
• CVE-2025-51471Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass access controls via a malicious realm value in a W...6.9Jul 22, 2025
• CVE-2025-1975Improper Validation of Array Index in ollama/ollama7.5May 16, 2025
• CVE-2024-8063Divide by Zero in ollama/ollama7.5Mar 20, 2025
• CVE-2025-0312NULL Pointer Dereference in ollama/ollama7.5Mar 20, 2025
• CVE-2024-12886Out-Of-Memory (OOM) Vulnerability in ollama/ollama7.5Mar 20, 2025
• CVE-2025-0317Divide By Zero in ollama/ollama7.5Mar 20, 2025
• CVE-2025-0315Allocation of Resources Without Limits or Throttling in ollama/ollama7.5Mar 20, 2025
• CVE-2024-12055DoS using malicious gguf model file in ollama/ollama7.5Mar 20, 2025
• CVE-2024-39720An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magic header. By leverag...8.2Oct 31, 2024
• CVE-2024-45436extractFromZipFile in model.go in Ollama before 0.1.47 can extract members of a ZIP archive outside of the parent directory.7.5Aug 29, 2024
• CVE-2024-37032Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 he...8.8May 31, 2024
• CVE-2024-28224Ollama before 0.1.29 has a DNS rebinding vulnerability that can inadvertently allow remote access to the full API, thereby letting an unauthorized user chat with a large language model, delete a mo...6.6Apr 8, 2024