A critical security flaw in Open WebUI (CVE-2025-64496) allows attackers to hijack user accounts and possibly fully compromise servers. The vulnerability exploits the Direct Connections feature, enabling malicious server connections to execute harmful JavaScript in browsers. #OpenWebUI #CVE202564496
Keypoints
- A high-severity vulnerability impacts Open WebUI versions 0.6.34 and earlier when the Direct Connections feature is enabled.
- The flaw allows malicious servers to send crafted server-sent events, executing JavaScript and stealing authentication tokens.
- Attackers can perform account takeover, access chat histories, and steal uploaded documents and API keys.
- The vulnerability can lead to remote code execution if users have workspace.tools permissions enabled.
- Open WebUI version 0.6.35 and later have patched the flaw, but organizations should enhance security measures further.
Read More: https://www.infosecurity-magazine.com/news/flaw-open-webui-affects-ai/