CVE-2024-8063

CVSS 3.0 Score 7.5 of 10 (high)

Details

Published Mar 20, 2025

CWE ID 369

Summary

CVE-2024-8063 is a divide-by-zero vulnerability affecting ollama version v0.3.3. Upon importing GGUF models with a specially crafted type for `block_count` in the Modelfile, this issue arises. The result is a denial-of-service condition, causing the server to crash when processing the model. This vulnerability can lead to unwanted downtime for organizations using this software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ollama

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/x9SbZh
https://www.cve.org/CVERecord?id=CVE-2024-8063
https://nvd.nist.gov/vuln/detail/CVE-2024-8063

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-2024-8063

CVSS 3.0 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations