Vulnerability Database

300,214

Total vulnerabilities in the database

CVE-2025-51471

Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass access controls via a malicious realm value in a WWW-Authenticate header returned by the /api/pull endpoint.

Published: Jul 22, 2025
Updated: Aug 11, 2025
CVE: CVE-2025-51471
GHSA: GHSA-x9hg-5q6g-q3jr
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N

CWEs:

CWE-345

Affected Software
References

Software	From	Fixed in
github.com/ollama/ollama	-	0.9.6.x

https://github.com/ollama/ollama
https://github.com/ollama/ollama/pull/10750
https://huntr.com/bounties/94eea285-fd65-4e01-a035-f533575ebdc2
https://www.gecko.security/blog/cve-2025-51471

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo