🟠 CVE-2026-5757

CVSS 评分: 7.5(高危) | 状态: Awaiting Analysis | 发布时间: 2026-06-26

漏洞描述

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive data exposure, further compromise, and stealthy persistence.

漏洞详情

字段
CVE ID CVE-2026-5757
CVSS 评分 7.5(高危)
CVSS 向量 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
发布时间 2026-06-26
最后更新 2026-06-26
状态 Awaiting Analysis
数据来源 cret@cert.org

参考链接

🤖 本文由 CVE 安全快讯机器人自动生成
数据来源: NVD (National Vulnerability Database) | 获取时间: 2026-06-27 06:07