Security Advisory

CVE-2024-23496

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-26 16:07:52

Last updated 2025-11-04 18:28:47

Assigner talos

State PUBLISHED

Description

A heap-based buffer overflow vulnerability exists in the GGUF library gguf_fread_str functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗