CVE-2026-54016: Open WebUI BOLA: `search_knowledge_files` Allows Unauthorized Knowledge Base File Enumeration

June 17, 2026

Open WebUI has a Broken Object Level Authorization (BOLA) vulnerability in the builtin search_knowledge_files tool.

When native function calling is enabled and the selected model has no attached knowledge bases, an authenticated user can call search_knowledge_files with an arbitrary knowledge_id. The function then returns file metadata from that knowledge base without checking whether the user has read access.

This allows unauthorized enumeration of private or restricted knowledge base files.

References

github.com/advisories/GHSA-cx9v-4qj2-jrw6
github.com/open-webui/open-webui/security/advisories/GHSA-cx9v-4qj2-jrw6
nvd.nist.gov/vuln/detail/CVE-2026-54016

Code Behaviors & Features

Detect and mitigate CVE-2026-54016 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →