YAML Metadata Warning: empty or missing yaml metadata in repo card (https://huggingface.co/docs/hub/model-cards#model-card-metadata)
GGUF Metadata RCE PoC
Verification
$ ls -la corrupt.gguf # Malicious metadata payload embedded $ # Load with llama.cpp or ggml โ Metadata parser triggers RCE
Bounty Repro
Download corrupt.gguf llama.cpp/ggml load โ Metadata deserialization executes payload RCE via malformed metadata fields
Discovery
- Garak Probe: Metadata injection bypasses model scanners
- Attack: LLM generates corrupted GGUF headers โ parser exploits
- Scanner Evasion: Protect AI misses metadata-layer payloads
Huntr Impact
- CVSS: 9.8 (Model loader RCE)
- Vector: Malicious GGUF files hosted on HF
- Downloads last month
- 42
Hardware compatibility
Log In to add your hardware
We're not able to determine the quantization variants.
Inference Providers NEW
This model isn't deployed by any Inference Provider. ๐ Ask for provider support