Описание
In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHE_DIR. This vulnerability allows attackers to overwrite and delete system files, potentially leading to remote code execution.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:openwebui:open_webui:0.3.8:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02278
Низкий
6.5 Medium
CVSS3
7.2 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
open-webui allows writing and deleting arbitrary files
EPSS
Процентиль: 84%
0.02278
Низкий
6.5 Medium
CVSS3
7.2 High
CVSS3
Дефекты
CWE-22