CNNVD-202601-4179 Information
Jan 23, 2026
cve
CNNVD ID
CNNVD-202601-4179
Related CVE
- CNNVD Published: 2026-01-23
Description (Chinese)
Open WebUI是Open WebUI开源的一个可扩展、功能丰富、用户友好的自托管 WebUI。 Open WebUI存在安全漏洞,该漏洞源于处理凭据时以明文传输敏感信息,可能导致信息泄露。
Description (English)
Open WebUI is an extended, functional, user-friendly, open source of Open WebUI WebUI. Open WebUI has a security loophole, which arises from the express transmission of sensitive information when handling the evidence, which may lead to its disclosure.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Open WebUI
Published
2026-01-23
Last Modified
2026-02-24
References
https://www.zerodayinitiative.com/advisories/ZDI-26-033/
Patch
https://github.com/open-webui/open-webui/releases
Share on: