0.3.32

DATE	CVE	VULNERABILITY TITLE	RISK
2025-03-20	CVE-2024-12537	Allocation of Resources Without Limits or Throttling vulnerability in Openwebui Open Webui 0.3.32 In version 0.3.32 of open-webui/open-webui, the absence of authentication mechanisms allows any unauthenticated attacker to access the `api/v1/utils/code/format` endpoint. network low complexity openwebui CWE-770	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.