CVE-2024-7048 — MEDIUM (5.4)

Vulnerability Description

In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileged user to access and overwrite files managed by a higher-privileged admin. By exploiting this vulnerability, an attacker can view metadata of files uploaded by an admin and overwrite these files, compromising the integrity and availability of the RAG models.

CVSS Score

5.4

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Openwebui	Open Webui	0.3.8

Related Weaknesses (CWE)

CWE-863

References

https://huntr.com/bounties/acd0b2dd-61eb-4712-82d3-a4e35d6ee560ExploitThird Party Advisory

FAQ

What is CVE-2024-7048?

CVE-2024-7048 is a vulnerability with a CVSS score of 5.4 (MEDIUM). In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privilege...

How severe is CVE-2024-7048?

CVE-2024-7048 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-7048?

Check the references section above for vendor advisories and patch information. Affected products include: Openwebui Open Webui.