{"data":{"id":"a5747021-3908-4347-9d0f-cb612e3f2213","title":"GHSA-w9f8-gxf9-rhvw: Open WebUI's Insecure Direct Object Reference (IDOR) allows access to other users' memories","summary":"Open WebUI has an insecure direct object reference (IDOR, a flaw where an app doesn't properly check if a user should access specific data) in its retrieval API that lets any authenticated user read other users' private memories and uploaded files by guessing collection names like 'user-memory-{USER_UUID}' or 'file-{FILE_UUID}'. The vulnerability exists because the API checks that a user is logged in, but doesn't verify they own the data they're requesting.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-w9f8-gxf9-rhvw","publishedAt":"2026-03-27T15:35:49.000Z","cveId":"CVE-2026-29071","cweIds":null,"cvssScore":null,"cvssSeverity":"low","severity":"low","attackType":["data_extraction"],"issueType":"vulnerability","affectedPackages":["open-webui@<= 0.8.5 (fixed: 0.8.6)"],"affectedVendors":[],"affectedVendorsRaw":["Open WebUI"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0.00025,"patchAvailable":true,"disclosureDate":"2026-03-27T15:35:49.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"trivial","impactType":["confidentiality","integrity"],"aiComponentTargeted":"rag","llmSpecific":false,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":null}}