CVE-2026-5757

UNKNOWN 0.0

There exists an unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive data exposure, further compromise, and stealthy persistence.

Vendor	ollama ai
Product	ollama
Published	Jun 26, 2026
Last Updated	Jun 26, 2026

Stay Ahead of the Next One

Get instant alerts for ollama ai ollama

Be the first to know when new unknown vulnerabilities affecting ollama ai ollama are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Ollama AI / Ollama

v0.13.5

References

NVD ↗ CVE.org ↗ EPSS Data ↗

kb.cert.org: https://kb.cert.org/vuls/id/518910 ollama.com: https://ollama.com kb.cert.org: https://www.kb.cert.org/vuls/id/518910