CVE-2025-51471

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-51471

Severity

6.9

Medium

CVSS V3

Description

Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass access controls via a malicious realm value in a WWW-Authenticate header returned by the /api/pull endpoint.

References

https://images.chainguard.dev/security/CGA-3f5p-2g24-hrf5
https://github.com/advisories/GHSA-x9hg-5q6g-q3jr
https://images.chainguard.dev/security/CGA-qfxf-3pqj-3856
https://images.chainguard.dev/security/CGA-7h4r-c7r6-j3qj
https://images.chainguard.dev/security/CGA-v9j9-2v45-96xj
https://huntr.com/bounties/94eea285-fd65-4e01-a035-f533575ebdc2
https://www.gecko.security/blog/cve-2025-51471
https://github.com/ollama/ollama/pull/10750
https://github.com/ollama/ollama

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CVE-2025-51471

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company