Open-Webui Open-Webui vulnerabilities
25 known vulnerabilities affecting open-webui/open-webui_open-webui.
Total CVEs
25
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH14MEDIUM8LOW1
Vulnerabilities
Page 1 of 2
CVE-2024-7959P2HIGHCVSS 7.7≥ unspecified, ≤ latest2025-03-20
CVE-2024-7959 [HIGH] CWE-918 CVE-2024-7959: The `/openai/models` endpoint in open-webui/open-webui version 0.3.8 is vulnerable to Server-Side Re
The `/openai/models` endpoint in open-webui/open-webui version 0.3.8 is vulnerable to Server-Side Request Forgery (SSRF). An attacker can change the OpenAI URL to any URL without checks, causing the endpoint to send a request to the specified URL and return the output. This vulnerability allows the attacker to access internal services and potentially ga
nvd
CVE-2024-8060P3HIGHCVSS 8.1≥ unspecified, ≤ latest2025-03-20
CVE-2024-8060 [HIGH] CWE-22 CVE-2024-8060: OpenWebUI version 0.3.0 contains a vulnerability in the audio API endpoint `/audio/api/v1/transcript
OpenWebUI version 0.3.0 contains a vulnerability in the audio API endpoint `/audio/api/v1/transcriptions` that allows for arbitrary file upload. The application performs insufficient validation on the `file.content_type` and allows user-controlled filenames, leading to a path traversal vulnerability. This can be exploited by an authenticated user to over
nvd
CVE-2024-7053P3CRITICALCVSS 9.0≥ unspecified, ≤ latest2025-03-20
CVE-2024-7053 [CRITICAL] CWE-79 CVE-2024-7053: A vulnerability in open-webui/open-webui version 0.3.8 allows an attacker with a user-level account
A vulnerability in open-webui/open-webui version 0.3.8 allows an attacker with a user-level account to perform a session fixation attack. The session cookie for all users is set with the default `SameSite=Lax` and does not have the `Secure` flag enabled, allowing the session cookie to be sent over HTTP to a cross-origin domain. An attacker can exploit
nvd
CVE-2024-7043P3HIGHCVSS 8.8≥ unspecified, ≤ latest2025-03-20
CVE-2024-7043 [HIGH] CWE-862 CVE-2024-7043: An improper access control vulnerability in open-webui/open-webui v0.3.8 allows attackers to view an
An improper access control vulnerability in open-webui/open-webui v0.3.8 allows attackers to view and delete any files. The application does not verify whether the attacker is an administrator, allowing the attacker to directly call the GET /api/v1/files/ interface to retrieve information on all files uploaded by users, which includes the ID values. The
nvd
CVE-2024-7806P3HIGHCVSS 8.8≥ unspecified, ≤ latest2025-03-20
CVE-2024-7806 [HIGH] CWE-352 CVE-2024-7806: A vulnerability in open-webui/open-webui versions <= 0.3.8 allows remote code execution by non-admin
A vulnerability in open-webui/open-webui versions <= 0.3.8 allows remote code execution by non-admin users via Cross-Site Request Forgery (CSRF). The application uses cookies with the SameSite attribute set to lax for authentication and lacks CSRF tokens. This allows an attacker to craft a malicious HTML that, when accessed by a victim, can modify the P
nvd
CVE-2024-7034P3HIGHCVSS 7.2≥ unspecified, ≤ latest2025-03-20
CVE-2024-7034 [HIGH] CWE-22 CVE-2024-7034: In open-webui version 0.3.8, the endpoint `/models/upload` is vulnerable to arbitrary file write due
In open-webui version 0.3.8, the endpoint `/models/upload` is vulnerable to arbitrary file write due to improper handling of user-supplied filenames. The vulnerability arises from the usage of `file_path = f"{UPLOAD_DIR}/{file.filename}"` without proper input validation or sanitization. An attacker can exploit this by manipulating the `file.filename` par
nvd
CVE-2024-12537P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-12537 [HIGH] CWE-770 CVE-2024-12537: In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unau
In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the `api/v1/utils/code/format` endpoint. If a malicious actor sends a POST request with an excessively high volume of content, the server could become completely unresponsive. This could lead to severe performance issues,
nvd
CVE-2024-7033P3HIGHCVSS 7.2≥ unspecified, ≤ latest2025-03-20
CVE-2024-7033 [HIGH] CWE-29 CVE-2024-7033: In version 0.3.8 of open-webui/open-webui, an arbitrary file write vulnerability exists in the downl
In version 0.3.8 of open-webui/open-webui, an arbitrary file write vulnerability exists in the download_model endpoint. When deployed on Windows, the application improperly handles file paths, allowing an attacker to manipulate the file path to write files to arbitrary locations on the server's filesystem. This can result in overwriting critical system o
nvd
CVE-2024-7037P3HIGHCVSS 7.2≥ unspecified, ≤ latest2024-10-09
CVE-2024-7037 [HIGH] CWE-22 CVE-2024-7037: In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbi
In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHE_DIR. This vulnerability allows attackers to overwrite and delete system files, potentially leading to remote code execution.
nvd
CVE-2024-8053P3HIGHCVSS 8.2≥ unspecified, ≤ latest2025-03-20
CVE-2024-8053 [HIGH] CWE-306 CVE-2024-8053: In version v0.3.10 of open-webui/open-webui, the `api/v1/utils/pdf` endpoint lacks authentication me
In version v0.3.10 of open-webui/open-webui, the `api/v1/utils/pdf` endpoint lacks authentication mechanisms, allowing unauthenticated attackers to access the PDF generation service. This vulnerability can be exploited by sending a POST request with an excessively large payload, potentially leading to server resource exhaustion and denial of service (Do
nvd
CVE-2024-7036P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-7036 [HIGH] CWE-400 CVE-2024-7036: A vulnerability in open-webui/open-webui v0.3.8 allows an unauthenticated attacker to sign up with e
A vulnerability in open-webui/open-webui v0.3.8 allows an unauthenticated attacker to sign up with excessively large text in the 'name' field, causing the Admin panel to become unresponsive. This prevents administrators from performing essential user management actions such as deleting, editing, or adding users. The vulnerability can also be exploited b
nvd
CVE-2024-8017P3CRITICALCVSS 9.0≥ unspecified, ≤ latest2025-03-20
CVE-2024-8017 [CRITICAL] CWE-79 CVE-2024-8017: An XSS vulnerability exists in open-webui/open-webui versions <= 0.3.8, specifically in the function
An XSS vulnerability exists in open-webui/open-webui versions <= 0.3.8, specifically in the function that constructs the HTML for tooltips. This vulnerability allows attackers to perform operations with the victim's privileges, such as stealing chat history, deleting chats, and escalating their own account to an admin if the victim is an admin.
nvd
CVE-2024-7044P3HIGHCVSS 8.9≥ unspecified, ≤ latest2025-03-20
CVE-2024-7044 [HIGH] CWE-79 CVE-2024-7044: A Stored Cross-Site Scripting (XSS) vulnerability exists in the chat file upload functionality of op
A Stored Cross-Site Scripting (XSS) vulnerability exists in the chat file upload functionality of open-webui/open-webui version 0.3.8. An attacker can inject malicious content into a file, which, when accessed by a victim through a URL or shared chat, executes JavaScript in the victim's browser. This can lead to user data theft, session hijacking, malwar
nvd
CVE-2024-7983P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-7983 [HIGH] CWE-770 CVE-2024-7983: In version 0.3.8 of open-webui, an endpoint for converting markdown to HTML is exposed without authe
In version 0.3.8 of open-webui, an endpoint for converting markdown to HTML is exposed without authentication. A maliciously crafted markdown payload can cause the server to spend excessive time converting it, leading to a denial of service. The server becomes unresponsive to other requests until the conversion is complete.
nvd
CVE-2024-7039P3MEDIUMCVSS 6.7≥ unspecified, ≤ latest2025-03-20
CVE-2024-7039 [MEDIUM] CWE-863 CVE-2024-7039: In open-webui/open-webui version v0.3.8, there is an improper privilege management vulnerability. Th
In open-webui/open-webui version v0.3.8, there is an improper privilege management vulnerability. The application allows an attacker, acting as an admin, to delete other administrators via the API endpoint `http://0.0.0.0:8080/api/v1/users/{uuid_administrator}`. This action is restricted by the user interface but can be performed through direct API ca
nvd
CVE-2024-7990P3HIGHCVSS 8.4≥ unspecified, ≤ latest2025-03-20
CVE-2024-7990 [HIGH] CWE-79 CVE-2024-7990: A stored cross-site scripting (XSS) vulnerability exists in open-webui/open-webui version 0.3.8. The
A stored cross-site scripting (XSS) vulnerability exists in open-webui/open-webui version 0.3.8. The vulnerability is present in the `/api/v1/models/add` endpoint, where the model description field is improperly sanitized before being rendered in chat. This allows an attacker to inject malicious scripts that can be executed by any user, including adminis
nvd
CVE-2024-12534P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-12534 [HIGH] CWE-400 CVE-2024-12534: In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads i
In version v0.3.32 of open-webui/open-webui, the application allows users to submit large payloads in the email and password fields during the sign-in process due to the lack of character length validation on these inputs. This vulnerability can lead to a Denial of Service (DoS) condition when a user submits excessively large strings, exhausting serve
nvd
CVE-2024-7041P3MEDIUMCVSS 6.5≥ unspecified, ≤ latest2024-10-09
CVE-2024-7041 [MEDIUM] CWE-639 CVE-2024-7041: An Insecure Direct Object Reference (IDOR) vulnerability exists in open-webui/open-webui version v0.
An Insecure Direct Object Reference (IDOR) vulnerability exists in open-webui/open-webui version v0.3.8. The vulnerability occurs in the API endpoint `http://0.0.0.0:3000/api/v1/memories/{id}/update`, where the decentralization design is flawed, allowing attackers to edit other users' memories without proper authorization.
nvd
CVE-2024-7048P4MEDIUMCVSS 5.4≥ unspecified, ≤ latest2024-10-10
CVE-2024-7048 [MEDIUM] CWE-863 CVE-2024-7048: In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API en
In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileged user to access and overwrite files managed by a higher-privileged admin. By exploiting this vulnerability, an attacker can view metadata of files uploa
nvd
CVE-2024-7035P4MEDIUMCVSS 6.9≥ unspecified, ≤ latest2025-03-20
CVE-2024-7035 [MEDIUM] CWE-352 CVE-2024-7035: In version v0.3.8 of open-webui/open-webui, sensitive actions such as deleting and resetting are per
In version v0.3.8 of open-webui/open-webui, sensitive actions such as deleting and resetting are performed using the GET method. This vulnerability allows an attacker to perform Cross-Site Request Forgery (CSRF) attacks, where an unaware user can unintentionally perform sensitive actions by simply visiting a malicious site or through top-level navigat
nvd
1 / 2Next →