Ollama Windows Auto-Updater Vulnerabilities Lead to Persistent RCE

Two vulnerabilities in the Windows auto-updater for Ollama, a tool for running large language models locally, allow attackers to achieve persistent remote code execution. Researchers at Striga disclosed CVE-2026-42248 and CVE-2026-42249, which can be chained together to plant a persistent executable that runs on every user login. The flaws are unpatched, posing a risk to users who rely on Ollama for local LLM processing without sending data to external APIs.