Detections
Analytics
SCA: security update for open-webui (GHSA-9vvh-qmjx-p4q8)
high Tenable Self-Hosted Container Security Plugin ID 441621
Description
There are packages installed that are affected by a vulnerability referenced in the following CVE:- Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior
to 0.9.0, Open WebUI supports model composition via base_model_id: a user-defined model (e.g., "Cheap
Assistant") can reference an existing base model (e.g., "gpt-4-turbo-restricted") that provides the actual
inference capability. When a user queries the composed model, the access control pipeline verifies the
user has access to the composed model but never re-verifies access to the chained base model.
Additionally, the model creation and import endpoints accept arbitrary base_model_id values without
checking that the caller has access to that base model. Combined, this allows any user with the default
model creation permission to create a model that chains to a restricted base model — and then invoke it,
causing the server to dispatch the request to the restricted base model using the admin-configured API
key. This vulnerability is fixed in 0.9.0. (CVE-2026-44555)
Solution
Update the open-webui library and its related packages to version 0.9.0 or later.See Also
Plugin Details
Severity: High
ID: 441621
Version: Revision 1.6
Type: Local
Family: SCA Checks
Published: 5/9/2026
Updated: 6/1/2026
Risk Information
VPR
Risk Factor: Medium
Score: 5.5
Vendor
Vendor Severity: High
CVSS v2
Risk Factor: High
Base Score: 8
Temporal Score: 6.3
Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:P/A:P
CVSS Score Source: CVE-2026-44555
CVSS v3
Risk Factor: High
Base Score: 7.6
Temporal Score: 6.8
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/8/2026
Vulnerability Publication Date: 5/8/2026
Reference Information
CVE: CVE-2026-44555
cwe: CWE-862