Vulnerabilities > Ollama > Ollama > 0.1.14

DATE CVE VULNERABILITY TITLE RISK
2025-03-20 CVE-2025-0312 NULL Pointer Dereference vulnerability in Ollama
A vulnerability in ollama/ollama versions <=0.3.14 allows a malicious user to create a customized GGUF model file that, when uploaded and created on the Ollama server, can cause a crash due to an unchecked null pointer dereference.
network
low complexity
ollama CWE-476
7.5
2025-03-20 CVE-2025-0313 Improper Validation of Array Index vulnerability in Ollama
A vulnerability in ollama/ollama versions <=0.3.14 allows a malicious user to create a GGUF model that can cause a denial of service (DoS) attack.
network
low complexity
ollama CWE-129
7.5
2025-03-20 CVE-2025-0315 Allocation of Resources Without Limits or Throttling vulnerability in Ollama
A vulnerability in ollama/ollama <=0.3.14 allows a malicious user to create a customized GGUF model file, upload it to the Ollama server, and create it.
network
low complexity
ollama CWE-770
7.5
2025-03-20 CVE-2025-0317 Divide By Zero vulnerability in Ollama
A vulnerability in ollama/ollama versions <=0.3.14 allows a malicious user to upload and create a customized GGUF model file on the Ollama server.
network
low complexity
ollama CWE-369
7.5
2024-08-29 CVE-2024-45436 Path Traversal vulnerability in Ollama
extractFromZipFile in model.go in Ollama before 0.1.47 can extract members of a ZIP archive outside of the parent directory.
network
low complexity
ollama CWE-22
7.5