CVE-2026-44551 Scanner
CVE-2026-44551 Scanner - Authorization Bypass vulnerability in Open WebUI
Short Info
Level
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
22 days 8 hours
Scan only one
Domain, Subdomain, IPv4
Toolbox
Open WebUI is a self-hosted artificial intelligence platform designed for offline operation. This platform allows users to manage AI models and workflows independently of cloud-based services, enhancing privacy and control over data. It's frequently utilized by organizations requiring localized control over AI processes without third-party intervention. The platform is maintained regularly to ensure optimal performance and security for all end-users. Users can expand its capabilities through its modular architecture, tailoring the platform to specific needs. Prior to its version 0.9.0, Open WebUI aimed to provide robust features while ensuring usability for its audience.
Authorization Bypass vulnerability in Open WebUI allows attackers to authenticate without a valid password. This flaw, present prior to version 0.9.0, stems from the LDAP authentication endpoint failing to ensure the non-emptiness of passwords. Such oversight leads to authentication success even with an empty string, issuing full session tokens for attackers. The compromised process can result in unauthorized access to sensitive operations. As a critical threat, it's paramount for users to acknowledge and address its implications immediately. Updating the software eliminates this security gap, safeguarding system integrity.
This vulnerability specifically affects the `LdapForm` Pydantic model within Open WebUI. By lacking a minimum password length constraint, it allows empty strings during LDAP authentication. Consequently, this impacts the `Connection.bind()` call under vulnerable LDAP servers. Successful exploitation hands attackers the means to deploy a valid session token undetected. The template tests an endpoint demonstrating this weakness by sending requests without passwords and observing authentication outcomes. Open WebUI's version prior to 0.9.0 is confirmed vulnerable, requiring updates to secure operational integrity.
If exploited, this vulnerability poses significant security risks for affected Open WebUI systems. Intruders could potentially leverage this flaw to gain unauthorized access to network resources. With full session tokens acquired, attackers could perform operations as authenticated users. Financial losses might ensue from data theft or further penetration into confidential areas. Trust in the platform could degrade among its user community, diminishing its reputation. To prevent this, patching with version 0.9.0 or newer is strongly advised.
REFERENCES
