Access Control Flaw in Open WebUI Affects User Data Security
CVE-2026-59225
5.4MEDIUM
What is CVE-2026-59225?
Open WebUI is a self-hosted AI platform that allows users to configure and access various models. A vulnerability exists where authenticated non-admin users with read access can reach a restricted underlying model through certain API endpoints. Specifically, task endpoints can be exploited due to a flaw in how access checks are performed, allowing users to bypass intended restrictions. This issue has been addressed in version 0.10.0, and it is critical for all users operating vulnerable versions to update immediately to safeguard their data.
Affected Version(s)
open-webui >= 0.8.12, < 0.10.0
