CVE-2024-8060

Name of the Vulnerable Software and Affected Versions OpenWebUI version 0.3.0

Description The issue concerns a vulnerability in the audio API endpoint /audio/api/v1/transcriptions that allows for arbitrary file upload. This is due to insufficient validation on the file.content type and the allowance of user-controlled filenames, leading to a path traversal vulnerability. An authenticated user can exploit this to overwrite critical files within the Docker container, potentially leading to remote code execution as the root user.

Recommendations For OpenWebUI version 0.3.0, consider disabling access to the /audio/api/v1/transcriptions endpoint until a patch is available to prevent arbitrary file uploads. Additionally, restrict the ability to set user-controlled filenames to minimize the risk of path traversal exploitation.