CVE-2026-45397 Scanner

Open WebUI is a widely used web interface platform that allows management and configuration of various web services. It is primarily utilized by web developers and system administrators in environments requiring robust web-based administration tools. The platform facilitates tasks like monitoring, configuring, and deploying web applications, offering real-time insights into system operations. Its user-friendly interface is designed to enhance efficiency and streamline workflows, providing an essential service for managing complex web environments. However, like any software, it requires diligent security practices to protect against vulnerabilities.

The vulnerability detected in Open WebUI involves unauthorized access to sensitive information due to inadequate restriction mechanisms. This allows remote attackers to retrieve live configuration data without the need for authentication. Information disclosure vulnerabilities such as this can serve as stepping stones for further exploitation, potentially compromising system integrity. The vulnerability specifically stems from the lack of access control on a particular API endpoint. Recognizing and addressing such vulnerabilities is crucial for maintaining system security and preventing unauthorized data exposure.

Technical details regarding this vulnerability indicate that it affects the GET /api/v1/retrieval/ endpoint. Exploitable without authentication, it allows retrieval of sensitive configuration parameters such as "CHUNK_SIZE" and "RAG_EMBEDDING_MODEL," which are components of the RAG pipeline configuration. The exposed information could facilitate attackers in understanding the system's configuration and identifying potential weaknesses for further exploitation. The endpoint returns the content with a status code of 200 and a content-type of application/json, indicative of a successful response containing sensitive data.

Exploitation of this vulnerability could have several adverse effects, including unauthorized access to confidential configuration settings. This could lead to system misconfigurations being exploited, data leaks, and potentially serve as a vector for launching additional attacks. Malicious actors could gain insights into the system's workings, thereby increasing the risk of targeted attacks or compromising the reliability of the service. Ensuring robust security measures and timely updates can mitigate these risks and safeguard sensitive information from being disclosed.

REFERENCES

• https://github.com/open-webui/open-webui/security/advisories/GHSA-65pg-qhhw-mxwg
• https://github.com/open-webui/open-webui
• https://nvd.nist.gov/vuln/detail/CVE-2026-45397