CVE-2024-8017

An XSS vulnerability exists in open-webui/open-webui versions <= 0.3.8, specifically in the function that constructs the HTML for tooltips. This vulnerability allows attackers to perform operations with the victim's privileges, such as stealing chat history, deleting chats, and escalating their own account to an admin if the victim is an admin.

CVSS v3 9.0 CRITICAL

9.0^/10

CVSS v3 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Exploitability : 2.3 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://huntr.com/bounties/ef06c7c8-1cb2-42a7-a6e6-17b2e1c744f7	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:openwebui:open_webui:*:*:*:*:*:*:*:*

History

21 Jul 2025, 20:08

Type	Values Removed	Values Added
CPE		cpe:2.3:a:openwebui:open_webui::::::::
First Time		Openwebui Openwebui open Webui
Summary		(es) Existe una vulnerabilidad XSS en las versiones de open-webui/open-webui anteriores a la 0.3.8, específicamente en la función que genera el HTML para las descripciones emergentes. Esta vulnerabilidad permite a los atacantes realizar operaciones con los privilegios de la víctima, como robar el historial de chat, eliminar chats y escalar su propia cuenta a administrador si la víctima lo es.
References	~~() https://huntr.com/bounties/ef06c7c8-1cb2-42a7-a6e6-17b2e1c744f7 -~~	() https://huntr.com/bounties/ef06c7c8-1cb2-42a7-a6e6-17b2e1c744f7 - Exploit, Third Party Advisory

20 Mar 2025, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-20 10:15

Updated : 2025-07-21 20:08

NVD link : CVE-2024-8017

Mitre link : CVE-2024-8017

CVE.ORG link : CVE-2024-8017

JSON object : View

Products Affected

openwebui

open_webui

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

9.0 /10