Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2026/04/02 10:55 p.m.8 views

CVE-2026-34222

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11...

7.7CVSS5.8AI score0.05271EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/01 8:25 p.m.5 views

EUVD-2026-17977

Open WebUI has Broken Access Control in Tool Valves...

7.7CVSS5.9AI score0.05271EPSS
Exploits1References3
NVD
NVD
added 2026/04/01 6:16 p.m.7 views

CVE-2026-34222

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11...

7.7CVSS0.05271EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/01 5:2 p.m.32 views

CVE-2026-34222 Open WebUI has Broken Access Control in Tool Valves

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11...

7.7CVSS0.05271EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/01 5:2 p.m.2 views

CVE-2026-34222 Open WebUI has Broken Access Control in Tool Valves

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11...

7.7CVSS5.8AI score0.05271EPSS
Exploits1References2
CVE
CVE
added 2026/04/01 5:2 p.m.14 views

CVE-2026-34222

Affected product: Open WebUI, a self-hosted offline AI platform. Issue: broken access control in tool values prior to version 0.8.11. Impact: potential exposure due to access control bypass; CVSS 3.1 base score 7.7 (HIGH) with Network attack vector, low privileges required, no user interaction, c...

7.7CVSS5.8AI score0.05271EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/04/01 5:2 p.m.4 views

CVE-2026-34222 Open WebUI has Broken Access Control in Tool Valves

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.11, there is a broken access control vulnerability in tool values. This issue has been patched in version 0.8.11...

7.7CVSS5.9AI score0.05271EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.16 views

PT-2026-29571

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.8.11 Description A broken access control issue exists in Open WebUI, specifically in tool values. This allows low-privileged attackers to access sensitive Tool data. Recommendations Update to version 0.8.11 or...

7.7CVSS6.1AI score0.05271EPSS
Exploits1References12
Rows per page
Query Builder