CVE-2026-28786 MEDIUM

CVE-2026-28786: Open WebUI vulnerable to Path Traversal in `POST /api/v1/audio/transcriptions`

Vendor Open-Webui
Product open-webui
Weakness CWE-22 · Path traversal
Published March 26, 2026
Last update March 27, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.6, an unsanitized filename field in the speech-to-text transcription endpoint allows any authenticated non-admin user to trigger a `FileNotFoundError` whose message — including the server's absolute `DATA_DIR` path — is returned verbatim in the HTTP 400 response body, confirming information disclosure on all default deployments. Version 0.8.6 patches the issue.

Key dates

02Disclosure timeline

March 26, 2026 CVE published
March 27, 2026 Record updated