CNNVD-202512-3440 Information
Dec 18, 2025
cve
CNNVD ID
CNNVD-202512-3440
Related CVE
- CNNVD Published: 2025-12-18
Description (Chinese)
Ollama是Ollama开源的一个可以在本地启动并运行的大型语言模型。 Ollama v0.12.3及之前版本存在安全漏洞,该漏洞源于认证绕过,可能导致未授权模型管理操作。
Description (English)
Ollama is a large-scale local language model that can be started and run locally. There is a security loophole in Ollama v. 0.12,3 and earlier versions, which stems from the certification circumvention, which may lead to unauthorized model management operations.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Ollama
Published
2025-12-18
Last Modified
2026-02-24
References
https://gist.github.com/Cristliu/48dae561696374744d9fced07a544ecd https://github.com/ollama/ollama/issues
Patch
https://github.com/ollama/ollama/releases
Share on: