Description
Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open WebUI. Authentication is required to exploit this vulnerability.

The specific flaw exists within the install_frontmatter_requirements function.The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-28258.
Published: 2026-01-23
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

A command injection flaw exists in the install_frontmatter_requirements function of Open WebUI, caused by an insufficiently validated user-supplied string that is used directly in a system call. This weakness enables remote attackers who have authenticated access to the web interface to run arbitrary shell commands in the context of the service account, resulting in full remote code execution and compromising confidentiality, integrity, and availability of the host system.

Affected Systems

The vulnerability affects installations of Open WebUI, specifically version 0.6.32 and potentially earlier releases. Users running this version are at risk until a patch is applied or mitigations are enforced.

Risk and Exploitability

The CVSS score of 8.8 classifies this issue as high severity, while the EPSS score of less than 1% indicates a low but nonzero probability of exploitation. The vulnerability is not listed in the CISA KEV catalog. Due to the authentication requirement disclosed in the description, the likely attack vector is an authenticated remote user who can submit crafted data to the install_frontmatter_requirements endpoint. Once injected, the attacker can execute arbitrary commands as the service account, exposing the underlying operating system to compromise.

Generated by OpenCVE AI on April 18, 2026 at 03:17 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Open WebUI to the latest available version that incorporates the fix for the install_frontmatter_requirements command injection flaw.
  • Restrict or disable the install_frontmatter_requirements functionality so that only privileged administrative users can invoke it; if it is not essential for normal operation, remove or block the endpoint entirely.
  • Validate and sanitize all user-supplied input before it is passed to system calls, ensuring that shell meta‑characters cannot be injected.

Generated by OpenCVE AI on April 18, 2026 at 03:17 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 30 Jan 2026 20:00:00 +0000

Type Values Removed Values Added
First Time appeared Openwebui
Openwebui open Webui
CPEs cpe:2.3:a:openwebui:open_webui:0.6.32:*:*:*:*:*:*:*
Vendors & Products Openwebui
Openwebui open Webui

Fri, 23 Jan 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 23 Jan 2026 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Open-webui
Open-webui open-webui
Vendors & Products Open-webui
Open-webui open-webui

Fri, 23 Jan 2026 04:00:00 +0000

Type Values Removed Values Added
Description Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open WebUI. Authentication is required to exploit this vulnerability. The specific flaw exists within the install_frontmatter_requirements function.The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-28258.
Title Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability
Weaknesses CWE-78
References
Metrics cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Open-webui Open-webui
Openwebui Open Webui
cve-icon MITRE

Status: PUBLISHED

Assigner: zdi

Published:

Updated: 2026-02-26T14:44:27.862Z

Reserved: 2026-01-08T22:50:03.282Z

Link: CVE-2026-0765

cve-icon Vulnrichment

Updated: 2026-01-23T16:34:44.344Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-23T04:16:03.390

Modified: 2026-01-30T19:48:35.070

Link: CVE-2026-0765

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T03:30:25Z

Weaknesses