{"id":"PYSEC-2025-145","details":"A vulnerability in the Ollama server version 0.5.11 allows a malicious user to cause a Denial of Service (DoS) attack by customizing the manifest content and spoofing a service. This is due to improper validation of array index access when downloading a model via the /api/pull endpoint, which can lead to a server crash.","aliases":["CVE-2025-1975","GHSA-wrh5-cmwx-q2qr","GO-2025-3695"],"modified":"2026-05-21T15:00:20.810535019Z","published":"2025-05-16T09:15:17.980Z","references":[{"type":"EVIDENCE","url":"https://huntr.com/bounties/921ba5d4-f1d0-4c66-9764-4f72dffe7acd"}],"affected":[{"package":{"name":"ollama","ecosystem":"PyPI","purl":"pkg:pypi/ollama"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"last_affected":"0.5.11"}]}],"versions":["0.0.0","0.0.1","0.1.0","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.1.9","0.2.0","0.2.1","0.3.0","0.3.1","0.3.2","0.3.3","0.4.0","0.4.1","0.4.2","0.4.3","0.4.4","0.4.5","0.4.6","0.4.7","0.4.8","0.4.9","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4"],"ecosystem_specific":{},"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/ollama/PYSEC-2025-145.yaml"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}