Description
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the LDAP authentication endpoint does not validate that the submitted password is non-empty before performing a Simple Bind against the LDAP server. The LdapForm Pydantic model accepts password: str with no minimum length constraint, so an empty string passes validation. The subsequent Connection.bind() call succeeds on vulnerable LDAP servers, and the application issues a full session token for the target user. This vulnerability is fixed in 0.9.0.
Published: 2026-05-15
Score: 9.1 Critical
EPSS: 2.6% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The LDAP authentication endpoint in Open WebUI, before version 0.9.0, does not enforce a non‑empty password before attempting a Simple Bind. An attacker can send an empty password string, which the Pydantic model accepts, and the bind succeeds on vulnerable LDAP servers. The application then issues a fully valid session token for the chosen user. This flaw is classified as CWE‑287 and allows an unauthorized user to obtain access as any known LDAP account.

Affected Systems

All instances of Open WebUI older than 0.9.0 that use LDAP authentication through the exposed endpoint are vulnerable. The issue resides in the open‑webui product distributed by the maintainer. Any deployment relying on LDAP for login is susceptible.

Risk and Exploitability

The vulnerability has a CVSS score of 9.1 and an EPSS score of 3%, indicating a low but non‑zero probability that it will be exploited in the wild. The flaw is not listed in the CISA KEV catalog. The likely attack vector is remote: a client that can reach the web host can submit an HTTP request to the LDAP endpoint with an empty password and obtain a valid session token for any existing LDAP user, thereby gaining the privileges of that user.

Generated by OpenCVE AI on June 5, 2026 at 14:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Open WebUI to version 0.9.0 or later, which includes proper empty‑password validation.
  • If an upgrade is not immediately possible, disable the LDAP authentication endpoint in the application configuration or web server to block empty‑password submissions.
  • Add custom password‑length or non‑empty validation logic at the application or network perimeter to reject empty strings before they reach the LDAP server.

Generated by OpenCVE AI on June 5, 2026 at 14:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-2r4p-jpmg-48f4 Open WebUI has an LDAP Empty Password Authentication Bypass
History

Mon, 18 May 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Openwebui
Openwebui open Webui
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:openwebui:open_webui:*:*:*:*:*:*:*:*
Vendors & Products Openwebui
Openwebui open Webui

Mon, 18 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 15 May 2026 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Open-webui
Open-webui open-webui
Vendors & Products Open-webui
Open-webui open-webui

Fri, 15 May 2026 20:15:00 +0000

Type Values Removed Values Added
Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the LDAP authentication endpoint does not validate that the submitted password is non-empty before performing a Simple Bind against the LDAP server. The LdapForm Pydantic model accepts password: str with no minimum length constraint, so an empty string passes validation. The subsequent Connection.bind() call succeeds on vulnerable LDAP servers, and the application issues a full session token for the target user. This vulnerability is fixed in 0.9.0.
Title Open WebUI: LDAP Empty Password Authentication Bypass
Weaknesses CWE-287
References
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

Subscriptions

Open-webui Open-webui
Openwebui Open Webui
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-19T03:55:38.161Z

Reserved: 2026-05-06T20:59:00.594Z

Link: CVE-2026-44551

cve-icon Vulnrichment

Updated: 2026-05-18T14:33:25.468Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-15T20:16:46.437

Modified: 2026-05-18T18:35:23.590

Link: CVE-2026-44551

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T14:45:43Z

Weaknesses