Cross-Domain Token Exposure in Ollama by Ollama
CVE-2025-51471

6.9MEDIUM

Key Information:

Vendor: Ollama
Status: Ollama
Vendor: CVE Published:; 22 July 2025

What is CVE-2025-51471?

A vulnerability in Ollama version 0.6.7 allows remote attackers to exploit the server.auth.getAuthorizationToken mechanism, enabling them to steal sensitive authentication tokens. This can occur through a crafted malicious realm value in the WWW-Authenticate header returned by the /api/pull endpoint, facilitating unauthorized access and evasion of access controls.

References

https://github.com/ollama/ollama

https://github.com/ollama/ollama/pull/10750

https://www.gecko.security/blog/cve-2025-51471

CVSS V3.1

Score:

6.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 22, 2025
Vulnerability Reserved
Jun 16, 2025