Known Vulnerabilities for Ollama by Na
Listed below are 10 of the newest known vulnerabilities associated with "Ollama" by "Na".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59213 json | Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.6.27 before 0.10.0, get_all_mode... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-54021 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several di... | Not Provided | 2026-06-23 | 2026-06-26 |
| CVE-2026-45365 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, an intern... | Not Provided | 2026-05-15 | 2026-05-19 |
| CVE-2026-44563 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the /api/g... | Not Provided | 2026-05-15 | 2026-05-18 |
| CVE-2026-43625 json | CodexBar prior to 0.32.0 contains a session cookie leakage vulnerability that allows network attackers to intercept imported ... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-42249 json | Ollama for Windows contains a Remote Code Execution vulnerability in its update mechanism due to improper handling of attack... | Not Provided | 2026-04-29 | 2026-04-29 |
| CVE-2026-42248 json | Ollama for Windows does not perform integrity or authenticity verification of downloaded update executables. Unlike other pla... | Not Provided | 2026-04-29 | 2026-04-29 |
| CVE-2026-15685 json | Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability. This vulnerability allows remote atta... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-7482 json | Ollama before 0.17.1 contains a heap out-of-bounds read vulnerability in the GGUF model loader. The /api/create endpoint acce... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-7020 json | A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/tra... | Not Provided | 2026-04-26 | 2026-05-06 |