What is CVE-2026-5757?

CVE-2026-5757 is a high-severity vulnerability in Ollama Ai, classified under CWE-125 OUT-OF-BOUNDS READ. CVSS score: 7.5/10. Published 2026-06-26.

How severe is CVE-2026-5757?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Ollama Ai

CVE-2026-5757

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive data exposure, further compromise, and s…

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Ollama Ai — versions v0.13.5

References

cret@cert.org
cret@cert.org
af854a3a-2127-422b-91ae-364da2661108

Frequently asked questions

What is CVE-2026-5757?: CVE-2026-5757 is a high-severity vulnerability in Ollama Ai, classified under CWE-125 OUT-OF-BOUNDS READ. CVSS score: 7.5/10. Published 2026-06-26.
How severe is CVE-2026-5757?: High severity. CVSS v3 base score is 7.5 out of 10.