CVE-2026-54010 Openwebui CVE debrief

Who should care

Open WebUI users and administrators should be aware of this vulnerability. Anyone using Open WebUI versions prior to 0.9.6 is at risk. Immediate action is recommended to upgrade to the patched version.

Technical summary

CVE-2026-54010 is a high-severity vulnerability in Open WebUI, with a CVSS score of 8.3. It allows an authenticated user to access files without proper authorization by manipulating file_id values in chat messages. The vulnerability exists because Open WebUI does not correctly validate file access permissions when sharing chats. An attacker can exploit this by sharing a chat, granting themselves read access, and then accessing the victim's files through file endpoints. The vulnerability is characterized by CWE-284 (Improper Access Control), CWE-639 (Insufficient Control Flow Management), and CWE-862 (Missing Authorization).

Defensive priority

High priority should be given to upgrading Open WebUI to version 0.9.6 or later. Administrators should also review chat sharing permissions and monitor file access logs for suspicious activity.

Recommended defensive actions

• Upgrade Open WebUI to version 0.9.6 or later immediately.
• Review and restrict chat sharing permissions to prevent unauthorized file access.
• Monitor file access logs for suspicious activity.
• Implement additional access controls and authorization checks for file endpoints.
• Educate users about the risks of sharing chats with arbitrary file_id values.

Evidence notes

The CVE-2026-54010 vulnerability was publicly disclosed on June 23, 2026, and the CVE record was last modified on June 25, 2026. The vulnerability was patched in Open WebUI version 0.9.6. The CVSS score of 8.3 indicates high severity. The vulnerability is related to CWE-284, CWE-639, and CWE-862.

Official resources