ADVERTISEMENT

Critical vulnerability affects Ollama: 300,000 servers exposed to attackers

Ollama accepts requests without authentication, and 300,000 servers are sitting ducks. A new critical vulnerability allows hackers to leak server memory storing API keys, environment variables, system prompts, and users’ conversation data.

Ollama eak memory

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
May 6, 2026 4 min read
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites

How does the bug work?

out of bound read
Image by Cyera.
ADVERTISEMENT
Ollama
Image by Cybernews.

Companies deploying Ollama are in danger

What to do if you run Ollama?


ADVERTISEMENT