Open WebUI Exposes System Prompt to Regular User [Non-Admin] — CVE-2026-45351
GitHub · GitHub · CVE-2026-45351
ID
CVE-2026-45351
CVE-2026-45351
Date
Updated
Activity
Source
GitHub
GitHub
Vendor
GitHub
GitHub
Threat
medium
medium
CVSS
6.5
6.5
EPSS
0.00031
0.00031
Summary
### Summary _A regular user [non-admin] can view the system prompt of the model which is set by an admin._ ### Details _When a regular user [non-admin] logs into the application, a http://IP:8080/api/models? web request is initiated by the application and in response, it reveals the system prompt of available models set by admin on models pages in workspace affecting the confidentiality of application_ ### Affected…
Product
pip: open-webui
What to do
General, cautious steps (verify details in the official source):
- Review exposure and plan remediation based on risk and environment.
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.