llama.cpp — Vulnerabilities & Security Advisories 18

All 18 CVE vulnerabilities found in llama.cpp, with AI-generated Chinese analysis, references, and POCs.

Vendor: llama.cpp

CVE ID	Title	CVSS	Severity	Published
CVE-2026-34159	llama.cpp: Unauthenticated RCE via GRAPH_COMPUTE buffer=0 bypass in llama.cpp RPC backend CWE-119	9.8	Critical	2026-04-01
CVE-2026-33298	llama.cpp has a Heap Buffer Overflow via Integer Overflow in GGUF Tensor Parsing CWE-122	7.8	High	2026-03-24
CVE-2026-27940	llama.cpp has a Heap Buffer Overflow via Integer Overflow in `mem_size` Calculation — Bypass of CVE-2025-53630 Fix CWE-122	7.8	High	2026-03-12
CVE-2026-2069	ggml-org llama.cpp GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow CWE-121	3.3	Low	2026-02-06
CVE-2026-21869	llama.cpp has Out-of-bounds Write in llama-server CWE-787	8.8	High	2026-01-07
CVE-2025-53630	Integer Overflow in GGUF Parser can lead to Heap Out-of-Bounds Read/Write in gguf CWE-122	9.8^AI	Critical^AI	2025-07-10
CVE-2025-52566	llama.cpp tokenizer signed vs. unsigned heap overflow CWE-119	8.6	High	2025-06-24
CVE-2025-49847	llama.cpp Vulnerable to Buffer Overflow via Malicious GGUF Model CWE-119	8.8	High	2025-06-17
CVE-2024-42479	llama.cpp allows write-what-where in rpc_server::set_tensor CWE-123	10.0	Critical	2024-08-12
CVE-2024-42478	llama.cpp allows Arbitrary Address Read in rpc_server::get_tensor CWE-125	5.3	Medium	2024-08-12
CVE-2024-42477	llama.cpp global-buffer-overflow in ggml_type_size CWE-125	5.3	Medium	2024-08-12
CVE-2024-41130	llama.cpp null pointer dereference in gguf_init_from_file CWE-476	5.4	Medium	2024-07-22
CVE-2024-32878	Use of Uninitialized Variable Vulnerability in llama.cpp CWE-456	7.1	High	2024-04-26
CVE-2024-21825	llama.cpp 输入验证错误漏洞 CWE-190	8.8	High	2024-02-26
CVE-2024-23496	llama.cpp 输入验证错误漏洞 CWE-190	8.8	High	2024-02-26
CVE-2024-21802	llama.cpp 安全漏洞 CWE-122	8.8	High	2024-02-26
CVE-2024-21836	llama.cpp 输入验证错误漏洞 CWE-190	8.8	High	2024-02-26
CVE-2024-23605	llama.cpp 输入验证错误漏洞 CWE-190	8.8	High	2024-02-26

All 18 known CVE vulnerabilities affecting llama.cpp with full Chinese analysis, references, and POCs where available.