Ollama flaw could leak memory and expose secrets via crafted GGUF files
A high-severity heap out-of-bounds read in Ollama's GGUF model loader (CVE-2026-7482, CVSS 9.1) lets remote, unauthenticated attackers leak the Ollama process memory by sending a crafted GGUF to /api/create, potentially exposing environment variables, API keys, prompts, and user data across 300k+ servers. Mitigations include applying fixes, restricting network exposure, and deploying a proxy/auth gateway. The article also cites two unpatched Windows updater flaws (CVE-2026-42248/42249) that can enable persistent code execution; recommended workarounds are to disable automatic updates and remove Startup-folder shortcuts until patches land.