Description
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the LDAP authentication endpoint does not validate that the submitted password is non-empty before performing a Simple Bind against the LDAP server. The LdapForm Pydantic model accepts password: str with no minimum length constraint, so an empty string passes validation. The subsequent Connection.bind() call succeeds on vulnerable LDAP servers, and the application issues a full session token for the target user. This vulnerability is fixed in 0.9.0.
Published: 2026-05-15
Score: 9.1 Critical
EPSS: 1.5% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The LDAP authentication endpoint in Open WebUI, before version 0.9.0, does not enforce that a password must be non‑empty before attempting a Simple Bind. An attacker can submit an empty password string, which the Pydantic model accepts, and the bind succeeds on vulnerable LDAP servers. The application then issues a fully legitimate session token for the targeted LDAP user, effectively granting unauthorized access. The issue is classified as CWE‑287 and is resolved in version 0.9.0 by adding proper empty‑password validation in the LDAP module.

Affected Systems

All installations of Open WebUI older than 0.9.0 that use LDAP authentication via the exposed endpoint are vulnerable. This includes any deployment that relies on the Open WebUI product provided by the maintainer for user login through LDAP.

Risk and Exploitability

The vulnerability carries a CVSS score of 9.1 and an EPSS score of 1%, indicating a low but measurable risk of exploitation in the wild. It is not currently listed in the CISA KEV catalog. The likely attack vector is remote: an attacker able to reach the web host can send an HTTP request to the LDAP authentication endpoint with an empty password and obtain a valid session token for any existing LDAP user, thereby gaining the privileges associated with that account.

Generated by OpenCVE AI on June 18, 2026 at 13:03 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Open WebUI to version 0.9.0 or later, which implements proper empty‑password validation.
  • If an upgrade cannot be performed immediately, disable the LDAP authentication endpoint in the application configuration or at the web‑server level to block empty‑password submissions.
  • Add custom validation logic—either in the application layer or at the network perimeter—to reject empty password strings before they reach the LDAP server.

Generated by OpenCVE AI on June 18, 2026 at 13:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-2r4p-jpmg-48f4 Open WebUI has an LDAP Empty Password Authentication Bypass
History

Mon, 18 May 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Openwebui
Openwebui open Webui
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:openwebui:open_webui:*:*:*:*:*:*:*:*
Vendors & Products Openwebui
Openwebui open Webui

Mon, 18 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 15 May 2026 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Open-webui
Open-webui open-webui
Vendors & Products Open-webui
Open-webui open-webui

Fri, 15 May 2026 20:15:00 +0000

Type Values Removed Values Added
Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the LDAP authentication endpoint does not validate that the submitted password is non-empty before performing a Simple Bind against the LDAP server. The LdapForm Pydantic model accepts password: str with no minimum length constraint, so an empty string passes validation. The subsequent Connection.bind() call succeeds on vulnerable LDAP servers, and the application issues a full session token for the target user. This vulnerability is fixed in 0.9.0.
Title Open WebUI: LDAP Empty Password Authentication Bypass
Weaknesses CWE-287
References
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}


Subscriptions

Open-webui Open-webui
Openwebui Open Webui
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-19T03:55:38.161Z

Reserved: 2026-05-06T20:59:00.594Z

Link: CVE-2026-44551

cve-icon Vulnrichment

Updated: 2026-05-18T14:33:25.468Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-15T20:16:46.437

Modified: 2026-06-17T10:50:46.643

Link: CVE-2026-44551

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T13:15:15Z

Weaknesses