Main Vulnerability Database Vulnerabilities #VU127471

Server-Side Request Forgery (SSRF) in Open WebUI - CVE-2025-65958

Published: April 24, 2026

Vulnerability identifier: #VU127471

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:L/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-65958

CWE-ID: CWE-918

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Open WebUI

Affected software:
Open WebUI

Detailed vulnerability description

The vulnerability allows a remote user to access internal services and disclose sensitive information.

The vulnerability exists due to server-side request forgery (ssrf) in /api/v1/retrieval/process/web when processing a user-supplied URL. A remote user can send a specially crafted request containing an arbitrary URL to access internal services and disclose sensitive information.

No special permissions beyond basic authentication are required, and cloud metadata endpoints may be reachable in affected deployments.

How to mitigate CVE-2025-65958

Install security update from vendor's website.

Sources

https://github.com/open-webui/open-webui/security/advisories/GHSA-c6xv-rcvw-v685

Server-Side Request Forgery (SSRF) in Open WebUI - CVE-2025-65958

Detailed vulnerability description

How to mitigate CVE-2025-65958

Sources

Please verify you're human