A vulnerability, which was classified as critical , has been found in open-webui Open WebUI . This affects an unknown part. This manipulation causes improper access controls. This vulnerability appears as CVE-2026-54012 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.