Every CVE whose affected-product data names Ggml Llama.cpp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2024-42479 — CVSS 10.0 (critical): llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address…
CVE-2026-34159 — CVSS 9.8 (critical): llama.cpp is an inference of several LLM models in C/C++. Prior to version b8492, the RPC backend's deserialize_tensor() skips all bounds…
CVE-2024-21836 — CVSS 8.8 (high): A heap-based buffer overflow vulnerability exists in the GGUF library header.n_tensors functionality of llama.cpp Commit 18c2e17. A…
CVE-2024-23496 — CVSS 8.8 (high): A heap-based buffer overflow vulnerability exists in the GGUF library gguf_fread_str functionality of llama.cpp Commit 18c2e17. A specially…
CVE-2024-23605 — CVSS 8.8 (high): A heap-based buffer overflow vulnerability exists in the GGUF library header.n_kv functionality of llama.cpp Commit 18c2e17. A specially…
CVE-2024-21802 — CVSS 8.8 (high): A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality of llama.cpp Commit 18c2e17. A specially…
CVE-2024-21825 — CVSS 8.8 (high): A heap-based buffer overflow vulnerability exists in the GGUF library GGUF_TYPE_ARRAY/GGUF_TYPE_STRING parsing functionality of llama.cpp…
CVE-2025-49847 — CVSS 8.8 (high): llama.cpp is an inference of several LLM models in C/C++. Prior to version b5662, an attacker‐supplied GGUF model vocabulary can trigger…
CVE-2026-21869 — CVSS 8.8 (high): llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the n_discard parameter is parsed directly from…
CVE-2025-52566 — CVSS 8.6 (high): llama.cpp is an inference of several LLM models in C/C++. Prior to version b5721, there is a signed vs. unsigned integer overflow in…
CVE-2026-27940 — CVSS 7.8 (high): llama.cpp is an inference of several LLM models in C/C++. Prior to b8146, the gguf_init_from_file_impl() in gguf.cpp is vulnerable to an…
CVE-2026-33298 — CVSS 7.8 (high): llama.cpp is an inference of several LLM models in C/C++. Prior to b7824, an integer overflow vulnerability in the `ggml_nbytes` function…
CVE-2024-32878 — CVSS 7.1 (high): Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in gguf_init_from_file, the code will free…
CVE-2024-41130 — CVSS 5.4 (medium): llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in gguf_init_from_file. This…
CVE-2024-42477 — CVSS 5.3 (medium): llama.cpp provides LLM inference in C/C++. The unsafe `type` member in the `rpc_tensor` structure can cause `global-buffer-overflow`. This…
CVE-2024-42478 — CVSS 5.3 (medium): llama.cpp provides LLM inference in C/C++. The unsafe `data` pointer member in the `rpc_tensor` structure can cause arbitrary address…