CVE-2026-45301

Open WebUI · Open WebUI

Open WebUI contains an improper access control vulnerability that allows authenticated users to perform unauthorized actions.

Executive summary

An improper access control vulnerability in Open WebUI versions prior to 0.3.16 permits authenticated attackers to bypass security restrictions and compromise system integrity.

Vulnerability

This vulnerability, classified under CWE-284, stems from improper access control. The CVSS vector (PR:L) confirms that an attacker must possess authenticated, low-privileged access to the platform to exploit this flaw.

Business impact

The vulnerability carries a CVSS score of 8.1, indicating a high severity risk. Successful exploitation allows an authenticated attacker to manipulate data or gain unauthorized access to functions they should not be able to access, potentially leading to a total loss of confidentiality and integrity within the platform. Given the nature of AI platforms, this could result in unauthorized access to sensitive model interactions or administrative configurations.

Remediation

Immediate Action: Update the Open WebUI platform to version 0.3.16 or later immediately.

Proactive Monitoring: Review application access logs for unusual patterns of API calls or unauthorized attempts to access administrative endpoints.

Compensating Controls: Ensure the deployment is restricted to trusted internal networks and utilize a Web Application Firewall (WAF) to filter malicious requests targeting the application's authentication logic.

Exploitation status

Public Exploit Available: Unknown.

Analyst recommendation

Organizations utilizing Open WebUI must prioritize upgrading to version 0.3.16 to remediate this access control flaw. Given the existence of a proof-of-concept, the window for potential exploitation is narrowing; immediate patching is the only effective method to ensure the security of the AI platform environment.