TechRadar

This WebUI vulnerability allows remote code execution - here's how to stay safe

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection ...
Hosted on MSN

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could enable account takeover and RCE via malicious model URLs and Functions API ...