Vulnerability Description
A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manipulation of the argument digest results in path traversal. The attack may be performed from remote. This attack is characterized by high complexity. The exploitability is reported as difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ollama | Ollama | >= 0.20.0, <= 0.20.2 |
Related Weaknesses (CWE)
References
- https://vuldb.com/submit/797576ExploitThird Party AdvisoryVDB Entry
- https://vuldb.com/vuln/359599Third Party AdvisoryVDB Entry
- https://vuldb.com/vuln/359599/ctiPermissions Required
- https://vuldb.com/submit/797576ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2026-7020?
CVE-2026-7020 is a vulnerability with a CVSS score of 3.7 (LOW). A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The manip...
How severe is CVE-2026-7020?
CVE-2026-7020 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-7020?
Check the references section above for vendor advisories and patch information. Affected products include: Ollama Ollama.