What is CVE-2025-15514?

CVE-2025-15514 is a high-severity vulnerability in Ollama, classified under CWE-395. CVSS score: 7.5/10. Published 2026-01-12.

How severe is CVE-2025-15514?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Ollama

CVE-2025-15514

Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal model image processing functionality. When processing base64-encoded image data via the /api/chat endpoint, the applicatio…

EPSS: 0.006 (45.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Ollama — versions v0.11.5-rc0, 0.11.5

Weakness classification (CWE)

CWE-395

References

disclosure@vulncheck.com (Exploit, technical-description, Patch, Third Party Advisory, exploit)
disclosure@vulncheck.com (Product, product)
disclosure@vulncheck.com (Product, product)
disclosure@vulncheck.com (Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2025-15514?: CVE-2025-15514 is a high-severity vulnerability in Ollama, classified under CWE-395. CVSS score: 7.5/10. Published 2026-01-12.
How severe is CVE-2025-15514?: High severity. CVSS v3 base score is 7.5 out of 10.