AI description
CVE-2025-66959 describes a vulnerability found in Ollama version 0.12.10. This issue allows a remote attacker to initiate a denial of service by exploiting a flaw within the GGUF decoder. The vulnerability has been noted to impact products such as Red Hat Ansible Automation Platform, Red Hat OpenShift AI, and Ansible Services, where Ollama components are utilized.
- Description
- An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the GGUF decoder
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- ollama
CVSS 3.1
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-20
- Hype score
- Not currently trending
My first two CVEs(CVE-2025-66959, CVE-2025-66960) discovered in Ollama have been published. Just audit my eyes👀 https://t.co/1A5I7Cm9f5
@desckimh
8 Feb 2026
2561 Impressions
3 Retweets
44 Likes
8 Bookmarks
0 Replies
0 Quotes
CVE-2025-66959 Denial of Service Vulnerability in Ollama v0.12.10 GGUF Decoder https://t.co/yho6mMCuwr
@VulmonFeeds
21 Jan 2026
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-66959 An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the GGUF decoder https://t.co/V9z1lREoMF
@CVEnew
21 Jan 2026
167 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ollama:ollama:0.12.10:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E5BE19AF-8583-4E83-AECD-1B8284D97BE0"
}
],
"operator": "OR"
}
]
}
]