CVE-2024-7053: Session Fixation in open-webui/open-webui

Published Mar 20, 2025
·
Updated

A vulnerability in open-webui/open-webui version 0.3.8 allows an attacker with a user-level account to perform a session fixation attack. The session cookie for all users is set with the default SameSite=Lax and does not have the Secure flag enabled, allowing the session cookie to be sent over HTTP to a cross-origin domain. An attacker can exploit this by embedding a malicious markdown image in a chat, which, when viewed by an administrator, sends the admin's session cookie to the attacker's server. This can lead to a stealthy administrator account takeover, potentially resulting in remote code execution (RCE) due to the elevated privileges of administrator accounts.

Affected Software

3 affected components
open-webui open-webui
pip/open-webui<=0.3.8
openwebui Open WebUI=0.3.8

Event History

Mar 20, 2025
CVE Published
via MITRE·10:11 AM
Data Sourced
via MITRE·10:11 AM
DescriptionSeverityWeakness
Data Sourced
via NVD·10:15 AM
DescriptionSeverityWeakness
Data Sourced
via NVD·10:15 AM
Affected Software
Advisory Published
via GitHub·12:32 PM
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2024-7053?

CVE-2024-7053 has a medium severity rating due to the potential for session fixation attacks.

2

How do I fix CVE-2024-7053?

To fix CVE-2024-7053, update the 'open-webui' software to the latest version and ensure session cookies have the 'Secure' flag and appropriate SameSite attributes.

3

Who is affected by CVE-2024-7053?

Any user-level account on 'open-webui' version 0.3.8 is affected by CVE-2024-7053.

4

What type of attack is associated with CVE-2024-7053?

CVE-2024-7053 is associated with session fixation attacks due to improper handling of session cookies.

5

Can CVE-2024-7053 lead to data compromise?

Yes, CVE-2024-7053 can potentially lead to unauthorized access and data compromise if exploited successfully.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203