CVE ID :CVE-2026-54010 Published : June 23, 2026, 4:48 p.m. | 4 hours, 22 minutes ago Description :Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets an authenticated user attach arbitrary file_id values to their...

#Sicherheitslücke #AI

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-54010 - Open WebUI: Forged chat-file link allows cross-user file read and deletion

VERWANDTEARTIKEL

Samsung KNOX Kernel UAF Exposes Millions of Galaxy Devices

CVE-2024-4577

CVE-2026-41947

CVE-2026-28496

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

CVE-2026-11807 - Eda-server: websocket missing authorization allows credential theft via activation_id spoofing