TL;DR Ollama has shipped three remote-code-execution vulnerabilities in three years, all at the model-loading boundary. CVE-2024-37032 ("Probllama", Wiz Research, 2024) was a path-traversal-to-RCE. The 0.

Source: [Dev.to](https://dev.to/alejandxr/ollama-model-loading-rce-three-years-of-the-same-bug-class-one-self-hosted-llm-runtime-4cae)

Sponsored