CVE-2026-59213 | open-webui Open WebUI up to 0.9.x Model List Caching routers/openai.py get_all_models permission

SecurityVulns

A vulnerability has been found in open-webui Open WebUI up to 0.9.x and classified as problematic. This affects the function get_all_models of the file routers/openai.py of the component Model List Caching. Performing a manipulation results in permission issues.

This vulnerability is reported as CVE-2026-59213. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More