Vulnerability in open-webui/open-webui Allows Arbitrary File Write and Delete, Potentially Leading to Remote Code Execution
CVE-2024-7037

6.5MEDIUM

Key Information:

Vendor
Open-webui
Vendor
CVE Published:
9 October 2024

Summary

In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHE_DIR. This vulnerability allows attackers to overwrite and delete system files, potentially leading to remote code execution.

Affected Version(s)

open-webui/open-webui <= unspecified

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.