AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-28224: Ollama before 0.1.29 has a DNS rebinding vulnerability that can inadvertently allow remote access to the full API, there

mediumvulnerabilityLLM-Specific

security

Source: NVD/CVE DatabaseApril 8, 2024CVE-2024-28224

Summary

Ollama before version 0.1.29 has a DNS rebinding vulnerability (a technique where an attacker tricks a system into connecting to a malicious server by manipulating how domain names are translated into addresses), which allows unauthorized remote access to its full API. This vulnerability could let an attacker interact with the language model, remove models, or cause a denial of service (making a system unavailable by overloading it with requests).

Solution / Mitigation

Update Ollama to version 0.1.29 or later.

Vulnerability Details

CVSS Score

6.6(medium)

EPSS (30-day exploit probability)

EPSS: 0.2%

Classification

Attack Type

DoS

Attack SophisticationModerate

Impact (CIA+S)

confidentialityintegrity

Taxonomy References

CWE (Weakness Type)

CWE-346

Affected Vendors

Related Issues

medium

CVE-2022-29200: TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implem

Similar attackNVD/CVE Database

low

CVE-2021-29541: TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a dereference of a null p

First tracked: February 15, 2026 at 08:44 PM

Classified by LLM (prompt v3) · confidence: 95%