What is the severity of CVE-2024-7048?

CVE-2024-7048 is considered a critical vulnerability due to the potential for unauthorized file access and modification by lower-privileged users.

How do I fix CVE-2024-7048?

To mitigate CVE-2024-7048, update to the latest version of open-webui that addresses the privilege management issues.

What types of systems are affected by CVE-2024-7048?

CVE-2024-7048 affects systems running version v0.3.8 of open-webui.

Can CVE-2024-7048 be exploited remotely?

Yes, CVE-2024-7048 can be exploited remotely through specific API endpoints without requiring physical access.

What should I do if I have already been compromised due to CVE-2024-7048?

If compromised, immediately restrict user access, audit file changes, and apply the latest patch for CVE-2024-7048.

Vulnerability/
CVE-2024-7048

medium

6.3

CWE

269

10/10/2024

CVE-2024-7048: IDOR in open-webui/open-webui

First published: Thu Oct 10 2024(Updated: )

In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileged user to access and overwrite files managed by a higher-privileged admin. By exploiting this vulnerability, an attacker can view metadata of files uploaded by an admin and overwrite these files, compromising the integrity and availability of the RAG models.

Credit: security@huntr.dev

Affected Software	Affected Version	How to fix
open-webui

Never miss a vulnerability like this again

Reference Links

https://huntr.com/bounties/acd0b2dd-61eb-4712-82d3-a4e35d6ee560

Frequently Asked Questions

What is the severity of CVE-2024-7048?
CVE-2024-7048 is considered a critical vulnerability due to the potential for unauthorized file access and modification by lower-privileged users.
How do I fix CVE-2024-7048?
To mitigate CVE-2024-7048, update to the latest version of open-webui that addresses the privilege management issues.
What types of systems are affected by CVE-2024-7048?
CVE-2024-7048 affects systems running version v0.3.8 of open-webui.
Can CVE-2024-7048 be exploited remotely?
Yes, CVE-2024-7048 can be exploited remotely through specific API endpoints without requiring physical access.
What should I do if I have already been compromised due to CVE-2024-7048?
If compromised, immediately restrict user access, audit file changes, and apply the latest patch for CVE-2024-7048.

agent/weakness
agent/title
agent/references
agent/first-publish-date
agent/description
agent/type
agent/severity
agent/author
agent/event
collector/nvd-api
source/NVD
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/open-webui
canonical/open-webui

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.