CVE-2025-1975 – Ollama Server Array Index Access Denial of Service Vulnerability

May 16, 2025

CVE ID : CVE-2025-1975

Published : May 16, 2025, 9:15 a.m. | 3 hours, 7 minutes ago

Description : A vulnerability in the Ollama server version 0.5.11 allows a malicious user to cause a Denial of Service (DoS) attack by customizing the manifest content and spoofing a service. This is due to improper validation of array index access when downloading a model via the /api/pull endpoint, which can lead to a server crash.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4679 – Synology Active Backup for Microsoft 365 Information Disclosure Vulnerability

Next Article Linux Candy: walrs – fast colorscheme generator

Turning User Research Into Real Organizational Change

June 2025: All AI updates from the past month

Building a culture that will drive platform engineering success

Gartner: More than 40% of agentic AI projects will be canceled in the next few years

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

This gimbal-tracking webcam has TWO cameras and a great price — but it may not be “private” enough

I spent two months using the massive Area-51 gaming rig — both a powerful beast PC and an RGB beauty queen

“Using AI is no longer optional” — Did Microsoft just make Copilot mandatory for its staff as a critical performance metric?

June report 2025

June report 2025

Make your JS functions smarter and cleaner with default parameters

Best Home Interiors in Hyderabad – Top Designers & Affordable Packages

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

I FINALLY got my hands on my most anticipated gaming laptop of 2025 — and it’s a 14-inch monster

This gimbal-tracking webcam has TWO cameras and a great price — but it may not be “private” enough

I spent two months using the massive Area-51 gaming rig — both a powerful beast PC and an RGB beauty queen

CVE-2025-1975 – Ollama Server Array Index Access Denial of Service Vulnerability

Google fixes fourth actively exploited Chrome zero-day of 2025

Sudo local privilege escalation vulnerabilities fixed (CVE-2025-32462, CVE-2025-32463)

RapperBot Botnet Attack Peaks 50,000+ Attacks Targeting Network Edge Devices

asdf is an extendable version manager

Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available

CVE-2025-48129 – Holest Engineering Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light Privilege Escalation Vulnerability

First $1B business with one human employee will happen in 2026, says Anthropic CEO

Font Selection Guidelines

CVE-2025-47301 – Cisco Router Unvalidated Redirect

CVE-2025-5980 – Code-projects Restaurant Order System SQL Injection Vulnerability

CVE-2025-1975 – Ollama Server Array Index Access Denial of Service Vulnerability

Related Posts