Ggml

Llama.Cpp

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-34159

Exploit
  • EPSS 1.13%
  • Veröffentlicht 01.04.2026 16:59:59
  • Zuletzt bearbeitet 30.04.2026 19:18:32

llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492, the RPC backend's deserialize_tensor() skips all bounds validation when a tensor's buffer field is 0. An unauthenticated attacker can read and write arbitrary process m...

7.8

CVE-2026-33298

Exploit
  • EPSS 0.48%
  • Veröffentlicht 24.03.2026 00:01:40
  • Zuletzt bearbeitet 30.04.2026 17:01:02

llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the `ggml_nbytes` function allows an attacker to bypass memory validation by crafting a GGUF file with specific tensor dimensions. This cau...

7.8

CVE-2026-27940

Exploit
  • EPSS 0.18%
  • Veröffentlicht 12.03.2026 16:39:37
  • Zuletzt bearbeitet 28.04.2026 21:27:02

llama.cpp is an inference of several LLM models in C/C++. Prior to b8146, the gguf_init_from_file_impl() in gguf.cpp is vulnerable to an Integer overflow, leading to an undersized heap allocation. Using the subsequent fread() writes 528+ bytes of att...

9.8

CVE-2026-21869

Exploit
  • EPSS 0.44%
  • Veröffentlicht 07.01.2026 23:37:59
  • Zuletzt bearbeitet 02.02.2026 19:12:36

llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the n_discard parameter is parsed directly from JSON input in the llama.cpp server's completion endpoints without validation to ensure it's non-negative. When a...

8.8

CVE-2025-52566

Exploit
  • EPSS 0.32%
  • Veröffentlicht 24.06.2025 03:21:19
  • Zuletzt bearbeitet 27.08.2025 14:01:31

llama.cpp is an inference of several LLM models in C/C++. Prior to version b5721, there is a signed vs. unsigned integer overflow in llama.cpp's tokenizer implementation (llama_vocab::tokenize) (src/llama-vocab.cpp:3036) resulting in unintended behav...

8.8

CVE-2025-49847

Medienbericht
  • EPSS 0.44%
  • Veröffentlicht 17.06.2025 20:04:40
  • Zuletzt bearbeitet 27.08.2025 13:48:14

llama.cpp is an inference of several LLM models in C/C++. Prior to version b5662, an attacker‐supplied GGUF model vocabulary can trigger a buffer overflow in llama.cpp’s vocabulary‐loading code. Specifically, the helper _try_copy in llama.cpp/src/voc...

7.5

CVE-2024-42477

  • EPSS 0.46%
  • Veröffentlicht 12.08.2024 15:15:21
  • Zuletzt bearbeitet 27.04.2026 17:44:46

llama.cpp provides LLM inference in C/C++. The unsafe `type` member in the `rpc_tensor` structure can cause `global-buffer-overflow`. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561.

9.8

CVE-2024-42478

Exploit
  • EPSS 0.6%
  • Veröffentlicht 12.08.2024 15:15:21
  • Zuletzt bearbeitet 27.04.2026 17:44:38

llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address reading. This vulnerability is fixed in b3561.

9.8

CVE-2024-42479

Exploit
  • EPSS 2.63%
  • Veröffentlicht 12.08.2024 15:15:21
  • Zuletzt bearbeitet 27.04.2026 17:44:53

llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address writing. This vulnerability is fixed in b3561.

6.5

CVE-2024-41130

  • EPSS 0.32%
  • Veröffentlicht 22.07.2024 18:15:04
  • Zuletzt bearbeitet 27.08.2025 16:20:20

llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in gguf_init_from_file. This vulnerability is fixed in b3427.