CVE-2024-7034 – open-webui

Package

Manager: pip
Name: open-webui
Vulnerable Version: >=0 <=0.3.8

Severity

Level: Medium

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.01191 pctl0.78058

Details

Open WebUI Allows Arbitrary File Write via the `/models/upload` Endpoint In open-webui version 0.3.8, the endpoint `/models/upload` is vulnerable to arbitrary file write due to improper handling of user-supplied filenames. The vulnerability arises from the usage of `file_path = f"{UPLOAD_DIR}/{file.filename}"` without proper input validation or sanitization. An attacker can exploit this by manipulating the `file.filename` parameter to include directory traversal sequences, causing the resulting `file_path` to escape the intended `UPLOAD_DIR` and potentially overwrite arbitrary files on the system. This can lead to unauthorized modifications of system binaries, configuration files, or sensitive data, potentially enabling remote command execution.

Metadata

Created: 2025-03-20T12:32:45Z
Modified: 2025-03-21T17:30:06Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-crh6-pj8c-xrhc/GHSA-crh6-pj8c-xrhc.json
CWE IDs: ["CWE-22"]
Alternative ID: GHSA-crh6-pj8c-xrhc
Finding: F063
Auto approve: 1