admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-06-01 11:10:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-37032.md
0xMarcio d6bcaa53f2 Update CVE sources 2024-07-25 21:25
2024-07-25 21:25:12 +00:00

22 lines
973 B
Markdown
Raw Blame History

### [CVE-2024-37032](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37032)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring.
### POC
#### Reference
- https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032
#### Github
- https://github.com/Hatcat123/my_stars
- https://github.com/Mr-xn/Penetration_Testing_POC
- https://github.com/Ostorlab/KEV
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/tanjiti/sec_profile
Reference in New Issue View Git Blame Copy Permalink