CVE-2024-7773/CVE-2024-45436 in Ollama

Remote Code Execution via Zipslip

https://huntr.com/bounties/aeb82e05-484f-4431-9ede-25a3478d8dbb

huntr - The world’s first bug bounty platform for AI/ML

 

zipslip -> create /etc/ld.so.preload/vuln.so -> generate new process -> sprintf() hooked -> RCE

 

이상하게 꼬여서 같은 취약점에 CVE 두개 발급됨..