ARIA assesses a MEDIUM severity due to the potential for data leakage and unauthorized access, but without specific vulnerabilities identified. Real-world exploitability is uncertain, and remediation may involve applying updates or patches.
The Freedom Stack infrastructure, which includes Ollama, n8n, Qdrant, and Tor among others, is vulnerable due to unspecified security issues. Impact varies based on the affected components but could lead to data leaks or unauthorized access if exploited. All users of this stack are potentially affected.
Affected Systems
- Ollama
- n8n
- Qdrant
- Tor Rotator
- SearXNG
- Privoxy
- Gotify
- Grafana
Affected Versions: All versions deployed through the Freedom Stack
Remediation
- Review and update all components to their latest version using install.sh script.
- Check for any available security patches or updates specifically for Ollama, n8n, Qdrant, and Tor.
Stack Impact
This affects services like SearXNG, Privoxy, Grafana, Prometheus, and potentially the Linux kernel if running on a vulnerable version.