Description
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11.
Published: 2026-04-01
Score: 7.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized access to tool values
Action: Patch Now
AI Analysis

Impact

Open WebUI, a self‑hosted AI platform, has a broken access control flaw in the handling of tool values in versions prior to 0.8.11. The weakness, identified as CWE‑285, allows an attacker to read or modify tool configurations without proper authentication, potentially enabling privilege escalation or malicious code execution if the tools perform privileged operations.

Affected Systems

All deployments of Open WebUI running a version older than 0.8.11 are affected. The vulnerability applies to the open-webui:open-webui product across all operating systems where the platform is installed.

Risk and Exploitability

The CVSS score of 7.7 classifies this issue as high severity. EPSS data is unavailable, and the vulnerability is not listed in the CISA KEV catalog, indicating no publicly known exploits yet. The attack vector is inferred to be remote, exploiting exposed API endpoints that manage tool values, and does not require elevated credentials because of the broken access control.

Generated by OpenCVE AI on April 2, 2026 at 04:34 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Open WebUI to version 0.8.11 or later.
  • Verify that tool value access now requires proper authentication by testing the relevant API endpoints.
  • Ensure all production instances have been updated and monitor for any rollback attempts.

Generated by OpenCVE AI on April 2, 2026 at 04:34 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-7429-hxcv-268m Open WebUI has Broken Access Control in Tool Valves
History

Wed, 15 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Openwebui
Openwebui open Webui
CPEs cpe:2.3:a:openwebui:open_webui:*:*:*:*:*:*:*:*
Vendors & Products Openwebui
Openwebui open Webui

Sat, 04 Apr 2026 03:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 06:30:00 +0000

Type Values Removed Values Added
References

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Open-webui
Open-webui open-webui
Vendors & Products Open-webui
Open-webui open-webui

Wed, 01 Apr 2026 23:45:00 +0000

Type Values Removed Values Added
Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11.
Title Open WebUI has Broken Access Control in Tool Valves
Weaknesses CWE-285
References
Metrics cvssV3_1

{'score': 7.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N'}

Subscriptions

Open-webui Open-webui
Openwebui Open Webui
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-04T03:03:42.269Z

Reserved: 2026-03-26T15:57:52.324Z

Link: CVE-2026-34222

cve-icon Vulnrichment

Updated: 2026-04-03T05:33:11.349Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-01T18:16:29.850

Modified: 2026-04-15T15:25:35.630

Link: CVE-2026-34222

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-02T20:17:09Z

Weaknesses