Vulnerability detail

Enriched intelligence for a single CVE

8.8

CVSS
High

CVE-2024-37032

PUBLISHED

Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the...

PoC available Remote Low complexity No user interaction

Vendor: n/a
Product: n/a
Published: May 31, 2024
EPSS: —

Description

Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring.

nuclei_scanner

CVSS scores

CVSS v3.1 8.8 High

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitation status

Proof of concept available

Recorded 2024-10-21 05:44:49 UTC · Source

SSVC decision points

Exploitation: none
Automatable: No
Technical impact: partial

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
The Shadowserver (via CIRCL)	Jun 26, 2025

Scanner integrations

Scanner	Reference	Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-37032.yaml	Apr 25, 2025
Nessus	https://www.tenable.com/plugins/nessus/200185	Jun 07, 2024

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

pankass/CVE-2024-37032_CVE-2024-45436

github · Created 2024-10-21 05:44:49 UTC · 4 stars

CVE-2024-45436

Bi0x/CVE-2024-37032

github · Created 2024-06-26 03:11:29 UTC · 44 stars

Path traversal in Ollama with rogue registry server

Timeline

CVE ID Reserved

May 31, 2024
CVE Published to Public

May 31, 2024
Detected by Nessus

June 07, 2024
Proof of Concept Exploit Available

October 21, 2024
Detected by Nuclei

April 25, 2025
Added to KEVIntel

June 26, 2025