CVE-2024-39722 Information

Description

An issue was discovered in Ollama before 0.1.46. It exposes which files exist on the server on which it is deployed via path traversal in the api/push route.

Reference

https://oligosecurity.webflow.io/blog/more-models-more-probllms