Davidrochester

**Name of the Vulnerable Software and Affected Versions** Ollama versions prior to 0.20.2 **Description** A flaw in the Tensor Model Transfer Handler component allows remote attackers to perform path traversal. This occurs through the manipulation of the `digest` argument within the `digestToPath()` function located in the x/imagegen/transfer/transfer.go file. Path traversal is a technique that allows an attacker to access files and directories that are stored outside the web root folder by manipulating variables that reference files with dots and slashes. **Recommendations** Update to a version later than 0.20.2. As a temporary workaround, restrict access to the `digestToPath()` function to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions Ollama versions up to 18.1 Description A flaw exists in Ollama up to version 18.1 related to the processing of the `server/download.go` file within the Model Pull API component. This can lead to a server-side request forgery (SSRF) attack, which can be launched remotely. The vendor was contacted but did not respond. Recommendations Versions prior to 18.2 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Flycatcher Toys smART Pixelator 2.0 **Description** A security flaw exists in Flycatcher Toys smART Pixelator 2.0, specifically within the Bluetooth Low Energy Interface component. A manipulation of this component results in missing authentication. This attack can only be performed from the local network. The exploit has been publicly released and may be used for malicious purposes. The vendor was informed of this issue but did not provide a response. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Flycatcher Toys smART Sketcher versions up to 2.0 **Description** A flaw exists in the Bluetooth Low Energy Interface component of the software. This issue results in missing authentication. Exploitation is possible within a local network. The exploit has been published. The vendor was contacted regarding this disclosure but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.