> TritonInfoSec News
Home / May 12, 2026 / Story
0
#3 The Hacker News general May 10, 2026 at 12:41 UTC

Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

By [email protected] (The Hacker News)

AI Summary

Cyera researchers disclosed CVE-2026-7482 (CVSS 9.1), an out-of-bounds read vulnerability in Ollama dubbed 'Bleeding Llama,' allowing remote unauthenticated attackers to leak the entire process memory of affected servers. The flaw is estimated to impact over 300,000 globally exposed Ollama servers. Given Ollama's widespread use for self-hosted LLM inference, this vulnerability poses significant risk of sensitive data exfiltration from AI workloads.

Read full article → https://thehackernews.com/2026/05/ollama-out-of-bo…

Relevance score: 88.0/100

# More from May 12

  1. 1
    Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation The Hacker News
  2. 2
    Google: Hackers used AI to develop zero-day exploit for web admin tool BleepingComputer
  3. 4
    New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks SecurityWeek
  4. 5
    Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads The Hacker News
  5. 6
    cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor The Hacker News
  6. 7
    TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack The Hacker News
  7. 8
    TrickMo Android banker adopts TON blockchain for covert comms BleepingComputer
  8. 9
    UK water company allowed hackers to lurk undetected for nearly two years, regulator finds The Record
  9. 10
    Hackers abuse Google ads, Claude.ai chats to push Mac malware BleepingComputer