CVE-2024-37032
Ollama HTTP Request Smuggling (Unvalidated Digest Format)
Description
Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring.
INFO
Published Date :
May 31, 2024, 4:15 a.m.
Last Modified :
May 1, 2025, 2:01 p.m.
Remotely Exploit :
Yes !
Source :
[email protected]
CVSS Scores
| Score | Version | Severity | Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|---|
| CVSS 3.1 | HIGH | 134c704f-9b21-4f2e-91b3-4a467353bcc0 |
Solution
- Upgrade to Ollama version 0.1.34 or later.
Public PoC/Exploit Available at Github
CVE-2024-37032 has a 25 public
PoC/Exploit available at Github.
Go to the Public Exploits tab to see the list.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2024-37032.
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2024-37032 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2024-37032
weaknesses.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
LLM Supply Chain Scanner — security auditing for AI model supply chains
Go Makefile Shell
This is an AI Security Posture Management (AI-SPM) tool built on Python
Python TypeScript HCL
None
Python
None
None
Dockerfile Python CSS HTML Batchfile Shell
None
Dockerfile Shell Python
None
Rust Shell HTML
None
Python
None
None
PowerShell Shell HTML Python
None
None
HTML Python Shell
本项目借鉴了vulhub仓库的模式,用户只需执行一条docker命令即可轻松部署漏洞环境。
A curated collection of Proof of Concept (PoC) tools, scripts, and techniques designed for red team operations, penetration testing, and cybersecurity research. This repository focuses on providing practical resources for exploring vulnerabilities
attack cybersecurity exp hw penetration-testing poc red-team security-tools vulnerability-poc
CVE-2024-45436
Go
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2024-37032 vulnerability anywhere in the article.
-
CybersecurityNews
Metasploit Adds New Modules Targeting Linux RC4, BeyondTrust, and Registry Persistence
Metasploit Adds New Modules Targeting Linux RC4 The latest Metasploit update, released on February 27, 2026, brings significant firepower to security professionals and penetration testers. The release ... Read more
-
TheCyberThrone
CVE-2024-50050 impacts Meta’s Llama Stack framework
BackgroundCVE-2024-50050 is a significant security vulnerability identified in Meta’s Llama Stack, a popular framework for building and deploying generative AI (GenAI) applications. This vulnerability ... Read more
-
Trend Micro
The Road to Agentic AI: Exposed Foundations
Report highlights: Retrieval augmented generation (RAG) enables enterprises to build customized, efficient, and cost-effective applications based on private data. However, research reveals significant ... Read more
-
The Hacker News
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
Vulnerability / Cyber Threat Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform va ... Read more
The following table lists the changes that have been made to the
CVE-2024-37032 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
Initial Analysis by [email protected]
May. 01, 2025
Action Type Old Value New Value Added CPE Configuration OR *cpe:2.3:a:ollama:ollama:*:*:*:*:*:*:*:* versions up to (excluding) 0.1.34 Added Reference Type CVE: https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58 Types: Product Added Reference Type MITRE: https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58 Types: Product Added Reference Type CVE: https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34 Types: Release Notes Added Reference Type MITRE: https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34 Types: Release Notes Added Reference Type CVE: https://github.com/ollama/ollama/pull/4175 Types: Issue Tracking Added Reference Type MITRE: https://github.com/ollama/ollama/pull/4175 Types: Issue Tracking Added Reference Type CVE: https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032 Types: Exploit, Third Party Advisory Added Reference Type MITRE: https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032 Types: Exploit, Third Party Advisory -
CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0
Mar. 27, 2025
Action Type Old Value New Value Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Added CWE CWE-22 -
CVE Modified by af854a3a-2127-422b-91ae-364da2661108
Nov. 21, 2024
Action Type Old Value New Value Added Reference https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58 Added Reference https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34 Added Reference https://github.com/ollama/ollama/pull/4175 Added Reference https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032 -
CVE Modified by [email protected]
Jul. 15, 2024
Action Type Old Value New Value Added Reference MITRE https://www.vicarius.io/vsociety/posts/probllama-in-ollama-a-tale-of-a-yet-another-rce-vulnerability-cve-2024-37032 [No types assigned] -
CVE Received by [email protected]
May. 31, 2024
Action Type Old Value New Value Added Description Ollama before 0.1.34 does not validate the format of the digest (sha256 with 64 hex digits) when getting the model path, and thus mishandles the TestGetBlobsPath test cases such as fewer than 64 hex digits, more than 64 hex digits, or an initial ../ substring. Added Reference MITRE https://github.com/ollama/ollama/pull/4175 [No types assigned] Added Reference MITRE https://github.com/ollama/ollama/compare/v0.1.33...v0.1.34 [No types assigned] Added Reference MITRE https://github.com/ollama/ollama/blob/adeb40eaf29039b8964425f69a9315f9f1694ba8/server/modelpath_test.go#L41-L58 [No types assigned]