AI Security Open Source Hardware Apple Policy

#cve-2026-7482

Related: #ai-security · 1 #cyera · 1 #llm · 1 #local-inference · 1 #memory · 1 #ollama · 1 #security · 1

Cyera Research disclosure illustration for the Bleeding Llama vulnerability in Ollama's model execution pipeline

A crafted Ollama model file leaks the whole server's memory. 300,000 instances are exposed.

Cyera disclosed CVE-2026-7482 on May 1, a CVSS 9.1 unauthenticated heap read in Ollama. Three API calls dump prompts, env vars, and API keys from any open instance.