PatchSiren cyber security CVE debrief
CVE-2026-59217 open-webui CVE debrief
CVE-2026-59217 is a vulnerability in Open WebUI's file upload path. Prior to version 0.10.0, the file upload path accepted metadata and auto-linked uploaded files to a target knowledge base without applying the write-access check used by /api/v1/knowledge//file/add. This allowed read-only knowledge-base users to add arbitrary files. The issue is fixed in version 0.10.0. Affected product or component is Open WebUI, and the vulnerability class is related to improper access control. Likely operational impact includes unauthorized file uploads by read-only users.
- Vendor
- open-webui
- Product
- Unknown
- CVSS
- MEDIUM 4.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-09
- Original CVE updated
- 2026-07-10
- Advisory published
- 2026-07-09
- Advisory updated
- 2026-07-10
Who should care
Users of Open WebUI, especially those with read-only knowledge-base access, should be aware of this vulnerability and ensure they are running version 0.10.0 or later to prevent unauthorized file uploads. Affected operators include Open WebUI administrators and users with read-only knowledge-base access. Platform impact includes potential unauthorized file uploads and data breaches.
Technical summary
The vulnerability exists in the file upload path of Open WebUI, where metadata is accepted and uploaded files are auto-linked to a target knowledge base. The write-access check used by /api/v1/knowledge//file/add is not applied, allowing read-only users to add arbitrary files. This issue has been fixed in version 0.10.0. Affected product context indicates that users of Open WebUI, especially those with read-only knowledge-base access, should be aware of this vulnerability and ensure they are running version 0.10.0 or later to prevent unauthorized file uploads.
Defensive priority
Medium priority should be given to updating Open WebUI to version 0.10.0 or later to prevent exploitation of this vulnerability. Additionally, review and restrict write-access permissions for knowledge-base users, and monitor for suspicious file uploads and unauthorized access attempts.
Recommended defensive actions
- Update Open WebUI to version 0.10.0 or later
- Review and restrict write-access permissions for knowledge-base users
- Monitor for suspicious file uploads and unauthorized access attempts
- Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up.
- Review the supplied official advisory or CVE record to validate affected scope, severity, and vendor guidance.
- Plan vendor-supported updates or mitigations through normal change control where exposure is confirmed.
- Check relevant monitoring, detection, and logs for exposed assets that need extra review.
Evidence notes
The CVE record was published on 2026-07-09T17:17:02.613Z and was last modified on 2026-07-10T18:32:10.713Z. The NVD entry is currently Analyzed. The vulnerability details indicate that Open WebUI's file upload path accepted metadata and auto-linked uploaded files to a target knowledge base without applying the write-access check used by /api/v1/knowledge//file/add, allowing read-only knowledge-base users to add arbitrary files. This issue is fixed in version 0.10.0. Evidence limits suggest verifying affected product deployments, reviewing official advisories, and tracking exceptions.
Official resources
-
CVE-2026-59217 CVE record
CVE.org
-
CVE-2026-59217 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Patch
-
Mitigation or vendor reference
[email protected] - Issue Tracking, Patch
-
Mitigation or vendor reference
[email protected] - Product, Release Notes
-
Mitigation or vendor reference
[email protected] - Exploit, Mitigation, Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-09T17:17:02.613Z and has not been modified since then. The NVD entry is currently Analyzed.