Ollama Mcp Server - Ollama Mcp Server - CRITICAL - CVE-2025-15063. The Ollama MCP Server contains a command injection vulnerability within its execAsync method. The flaw arises due to inadequate validation of user-supplied input, allowing unauthorized remote attackers to execute arbitrary code without authentication. This security issue can lead to significant unauthorized actions carried out within the context of the server's service account, potentially compromising the entire system. It is crucial for users of the Ollama MCP Server to apply security patches and follow best practices to mitigate this vulnerability.