Browse all 5 CVE security advisories affecting Open WebUI. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Open WebUI serves as a web-based interface for interacting with large language models, primarily functioning as a user-friendly frontend for Ollama. Historically, it has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with five CVEs currently documented. The application's security posture has been impacted by issues such as insufficient input validation and improper access controls, though no major public security incidents have been widely reported. Its open-source nature allows for community scrutiny, but users should remain vigilant about potential exploits and maintain regular updates to mitigate risks associated with its web interface components.
CVE-2025-142222026-04-02CVE-2026-07662026-01-27CVE-2025-636812025-12-05Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with Open WebUI. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.