| Description: | | Ollama is an open-source AI model project that facilitates packaging and accelerates the deployment process of AI models. On June 24, 2024, the CVE-2024-37032 vulnerability in Ollama, which allows directory traversal leading to code execution, was disclosed on the internet. Since Ollama typically lacks authentication and authorization, attackers can exploit the relevant APIs in conjunction with the directory traversal vulnerability to achieve remote code execution and take control of the server. The official release of version 0.1.34 has addressed this vulnerability, and it is recommended to upgrade to version 0.1.34 or higher. |