Search for vulnerabilities
| Vulnerability ID | VCID-mn21-kwuu-w7by |
| Aliases |
CVE-2026-44569
GHSA-jxwr-g6r6-j3fx |
| Summary | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.19, there's an IDOR in the channels message management system that allows authenticated users to modify or delete any message within channels they have read access to. The vulnerability exists in the message update and delete endpoints, which implement channel-level authorization but completely lack message ownership validation. While the frontend correctly implements ownership checks (showing edit/delete buttons only for message owners or admins), the backend APIs bypass these protections by only validating channel access permissions without verifying that the requesting user owns the target message. This creates a client-side security control bypass where attackers can directly call the APIs to modify other users' messages. This vulnerability is fixed in 0.6.19. |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 8.0 |
| Risk | 4.0 |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| epss | 0.00036 | https://api.first.org/data/v1/epss?cve=CVE-2026-44569 |
| epss | 0.00036 | https://api.first.org/data/v1/epss?cve=CVE-2026-44569 |
| epss | 0.00036 | https://api.first.org/data/v1/epss?cve=CVE-2026-44569 |
| cvssv3.1_qr | HIGH | https://github.com/advisories/GHSA-jxwr-g6r6-j3fx |
| cvssv3.1 | 7.1 | https://github.com/open-webui/open-webui |
| generic_textual | HIGH | https://github.com/open-webui/open-webui |
| cvssv3.1 | 7.1 | https://github.com/open-webui/open-webui/security/advisories/GHSA-jxwr-g6r6-j3fx |
| cvssv3.1_qr | HIGH | https://github.com/open-webui/open-webui/security/advisories/GHSA-jxwr-g6r6-j3fx |
| generic_textual | HIGH | https://github.com/open-webui/open-webui/security/advisories/GHSA-jxwr-g6r6-j3fx |
| ssvc | Track | https://github.com/open-webui/open-webui/security/advisories/GHSA-jxwr-g6r6-j3fx |
| cvssv3.1 | 7.1 | https://nvd.nist.gov/vuln/detail/CVE-2026-44569 |
| generic_textual | HIGH | https://nvd.nist.gov/vuln/detail/CVE-2026-44569 |
| Reference id | Reference type | URL |
|---|---|---|
| https://api.first.org/data/v1/epss?cve=CVE-2026-44569 | ||
| https://github.com/open-webui/open-webui | ||
| https://nvd.nist.gov/vuln/detail/CVE-2026-44569 | ||
| GHSA-jxwr-g6r6-j3fx | https://github.com/advisories/GHSA-jxwr-g6r6-j3fx | |
| GHSA-jxwr-g6r6-j3fx | https://github.com/open-webui/open-webui/security/advisories/GHSA-jxwr-g6r6-j3fx |
| Attack Vector (AV) | Attack Complexity (AC) | Privileges Required (PR) | User Interaction (UI) | Scope (S) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|---|
network adjacent_network local physical |
low high |
none low high |
none required |
unchanged changed |
high low none |
high low none |
high low none |
| Attack Vector (AV) | Attack Complexity (AC) | Privileges Required (PR) | User Interaction (UI) | Scope (S) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|---|
network adjacent_network local physical |
low high |
none low high |
none required |
unchanged changed |
high low none |
high low none |
high low none |
| Attack Vector (AV) | Attack Complexity (AC) | Privileges Required (PR) | User Interaction (UI) | Scope (S) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|---|
network adjacent_network local physical |
low high |
none low high |
none required |
unchanged changed |
high low none |
high low none |
high low none |
| Percentile | 0.1116 |
| EPSS Score | 0.00036 |
| Published At | June 11, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-11T16:42:39.220190+00:00 | Vulnrichment | Import | https://github.com/cisagov/vulnrichment/blob/develop/2026/44xxx/CVE-2026-44569.json | 38.6.0 |