Launch Week Day 1: Announcing Security Design Review
Start for Free
MEDIUM 6.6 PyPI

CVE-2025-44779

PYSEC-2025-146 · CVE-2025-44779 · GHSA-93jv-pvg8-hf3v · GO-2025-3851

Published · Modified

Description

An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to the endpoint /api/pull.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes