Improper access control in Open WebUI - CVE-2026-54016

 

Improper access control in Open WebUI - CVE-2026-54016

Published: June 30, 2026


Vulnerability identifier: #VU135937
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-54016
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Open WebUI
Affected software:
Open WebUI

Detailed vulnerability description

The vulnerability allows a remote user to disclose sensitive information.

The vulnerability exists due to improper access control in the builtin search_knowledge_files tool when handling a user-supplied knowledge_id in the no attached knowledge branch. A remote user can supply an arbitrary knowledge_id to enumerate metadata for files in a knowledge base without authorization to disclose sensitive information.

Exploitation requires native function calling to be enabled, builtin tools and the knowledge tool category to be enabled, the selected model to have no attached knowledge bases, and knowledge of a valid target knowledge_id.


How to mitigate CVE-2026-54016

Install security update from vendor's website.

Sources