SCA: security update for open-webui (GHSA-9f4f-jv96-8766)

medium Tenable Self-Hosted Container Security Plugin ID 444471

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior
to version 0.6.6, a vulnerability in the way certain html tags in chat messages are rendered allows
attackers to inject JavaScript code into a chat transcript. The JavaScript code will be executed in the
user's browser every time that chat transcript is opened, allowing attackers to retrieve the user's access
token and gain full control over their account. Chat transcripts can be shared with other users in the
same server, or with the whole open-webui community if "Enable Community Sharing" is enabled in the admin
panel. If this exploit is used against an admin user, it is possible to achieve Remote Code Execution on
the server where the open-webui backend is hosted. This can be done by creating a new function which
contains malicious python code. This vulnerability also affects chat transcripts uploaded to
`https://openwebui.com/c/<user>/<chat_id>`, allowing for wormable stored XSS in https[:]//openwebui[.]com.
Version 0.6.6 contains a patch for the issue. (CVE-2025-46719)

Solution

Update the open-webui library and its related packages to version 0.6.6 or later.

See Also

https://github.com/advisories/GHSA-9f4f-jv96-8766

Plugin Details

Severity: Medium

ID: 444471

Version: Revision 1.1

Type: Local

Family: SCA Checks

Published: 7/7/2026

Updated: 7/7/2026

Risk Information

VPR

Risk Factor: Low

Score: 2.3

Percentile: 8.69

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N

CVSS Score Source: CVE-2025-46719

CVSS v3

Risk Factor: Medium

Base Score: 5.4

Temporal Score: 4.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS v4

Risk Factor: Medium

Base Score: 6.4

Threat Score: 5.4

Threat Vector: CVSS:4.0/E:P

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 7/7/2026

Vulnerability Publication Date: 5/5/2025

Reference Information

CVE: CVE-2025-46719

cwe: CWE-79