Vulnerability Details CVE-2024-37032
Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.933
EPSS Ranking 99.8%
CVSS Severity
CVSS v3 Score 8.8
References
- https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58
- https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34
- https://github.com/ollama/ollama/pull/4175
- https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032
- https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58
- https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34
- https://github.com/ollama/ollama/pull/4175
- https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032
Products affected by CVE-2024-37032
-
cpe:2.3:a:ollama:ollama:-
-
cpe:2.3:a:ollama:ollama:0.0.1
-
cpe:2.3:a:ollama:ollama:0.0.10
-
cpe:2.3:a:ollama:ollama:0.0.11
-
cpe:2.3:a:ollama:ollama:0.0.12
-
cpe:2.3:a:ollama:ollama:0.0.13
-
cpe:2.3:a:ollama:ollama:0.0.14
-
cpe:2.3:a:ollama:ollama:0.0.15
-
cpe:2.3:a:ollama:ollama:0.0.16
-
cpe:2.3:a:ollama:ollama:0.0.17
-
cpe:2.3:a:ollama:ollama:0.0.18
-
cpe:2.3:a:ollama:ollama:0.0.19
-
cpe:2.3:a:ollama:ollama:0.0.2
-
cpe:2.3:a:ollama:ollama:0.0.20
-
cpe:2.3:a:ollama:ollama:0.0.21
-
cpe:2.3:a:ollama:ollama:0.0.3
-
cpe:2.3:a:ollama:ollama:0.0.4
-
cpe:2.3:a:ollama:ollama:0.0.5
-
cpe:2.3:a:ollama:ollama:0.0.6
-
cpe:2.3:a:ollama:ollama:0.0.7
-
cpe:2.3:a:ollama:ollama:0.0.8
-
cpe:2.3:a:ollama:ollama:0.0.9
-
cpe:2.3:a:ollama:ollama:0.1.0
-
cpe:2.3:a:ollama:ollama:0.1.1
-
cpe:2.3:a:ollama:ollama:0.1.10
-
cpe:2.3:a:ollama:ollama:0.1.11
-
cpe:2.3:a:ollama:ollama:0.1.12
-
cpe:2.3:a:ollama:ollama:0.1.13
-
cpe:2.3:a:ollama:ollama:0.1.14
-
cpe:2.3:a:ollama:ollama:0.1.15
-
cpe:2.3:a:ollama:ollama:0.1.16
-
cpe:2.3:a:ollama:ollama:0.1.17
-
cpe:2.3:a:ollama:ollama:0.1.18
-
cpe:2.3:a:ollama:ollama:0.1.19
-
cpe:2.3:a:ollama:ollama:0.1.2
-
cpe:2.3:a:ollama:ollama:0.1.20
-
cpe:2.3:a:ollama:ollama:0.1.21
-
cpe:2.3:a:ollama:ollama:0.1.22
-
cpe:2.3:a:ollama:ollama:0.1.23
-
cpe:2.3:a:ollama:ollama:0.1.24
-
cpe:2.3:a:ollama:ollama:0.1.25
-
cpe:2.3:a:ollama:ollama:0.1.26
-
cpe:2.3:a:ollama:ollama:0.1.27
-
cpe:2.3:a:ollama:ollama:0.1.28
-
cpe:2.3:a:ollama:ollama:0.1.29
-
cpe:2.3:a:ollama:ollama:0.1.3
-
cpe:2.3:a:ollama:ollama:0.1.30
-
cpe:2.3:a:ollama:ollama:0.1.31
-
cpe:2.3:a:ollama:ollama:0.1.32
-
cpe:2.3:a:ollama:ollama:0.1.33
-
cpe:2.3:a:ollama:ollama:0.1.4
-
cpe:2.3:a:ollama:ollama:0.1.5
-
cpe:2.3:a:ollama:ollama:0.1.6
-
cpe:2.3:a:ollama:ollama:0.1.7
-
cpe:2.3:a:ollama:ollama:0.1.8
-
cpe:2.3:a:ollama:ollama:0.1.9