CVE-2025-44779
Published
CVSS v3
6.6
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to the endpoint /api/pull.
Get up and running with Kimi-K2.6, GLM-5.1, MiniMax, DeepSeek, gpt-oss, Qwen, Gemma and other models.
GitHub