CVE-2024-39721

{"id": "CVE-2024-39721", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2024-10-31T20:15:04.993", "references": [{"url": "https://github.com/ollama/ollama/blob/9164b0161bcb24e543cba835a8863b80af2c0c21/server/routes.go#L557", "tags": ["Product"], "source": "cve@mitre.org"}, {"url": "https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/routes.go#L536", "tags": ["Product"], "source": "cve@mitre.org"}, {"url": "https://www.oligo.security/blog/more-models-more-probllms", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-404"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Ollama before 0.1.34. The CreateModelHandler function uses os.Open to read a file until completion. The req.Path parameter is user-controlled and can be set to /dev/random, which is blocking, causing the goroutine to run infinitely (even after the HTTP request is aborted by the client)."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en Ollama antes de la versi\u00f3n 0.1.34. La funci\u00f3n CreateModelHandler usa os.Open para leer un archivo hasta que se complete. El par\u00e1metro req.Path est\u00e1 controlado por el usuario y se puede configurar en /dev/random, que es bloqueador y hace que la goroutine se ejecute infinitamente (incluso despu\u00e9s de que el cliente cancele la solicitud HTTP)."}], "lastModified": "2025-05-13T12:53:35.123", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ollama:ollama:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6FFF9F3-E470-40F2-B950-615D4B263935", "versionEndExcluding": "0.1.34"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}