Improper Access Control in Open WebUI Affects Self-Hosted AI Platform
CVE-2026-44562

6.5MEDIUM

Key Information:

Vendor: Open-webui
Status: Open-webui
Vendor: CVE Published:; 15 May 2026

What is CVE-2026-44562?

The Open WebUI platform, prior to version 0.9.0, is susceptible to an improper access control vulnerability. This issue allows users with the 'workspace.models_import' permission to overwrite existing models in the database without proper ownership checks. If a model's ID matches an existing model, the attacker can merge their payload with the vulnerable model's data, effectively compromising its integrity. This bypass of access grant restrictions undermines security protocols present in other model mutation endpoints. The flaw was addressed and resolved in version 0.9.0.

Affected Version(s)

open-webui < 0.9.0

References

https://github.com/open-webui/open-webui/security/advisor...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44562 Data

JSON

Open-webui

What is CVE-2026-44562?

Affected Version(s)

References

CVSS V3.1

Timeline