CVE-2024-7806

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 20, 2025

Updated: Mar 26, 2025

CWE ID 352

Summary

CVE-2024-7806 is a remote code execution vulnerability affecting open-webui versions prior to 0.3.9. This issue arises due to the use of lax SameSite cookies for authentication and the absence of CSRF tokens. An attacker can exploit this vulnerability by crafting a malicious HTML file and inducing a victim to access it. Once accessed, the attacker can successfully modify the Python code of an existing pipeline and execute arbitrary code utilizing the victim's privileges via Cross-Site Request Forgery (CSRF) attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xwZU8z
https://www.cve.org/CVERecord?id=CVE-2024-7806
https://nvd.nist.gov/vuln/detail/CVE-2024-7806

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-7806

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations