CVE-2026-4994

LOW

wandb OpenUI APIStatusError server.py generic_exception_handler information exposure

Title source: cna

Description

A vulnerability was found in wandb OpenUI up to 1.0/3.5-turb. Affected is the function generic_exception_handler of the file backend/openui/server.py of the component APIStatusError Handler. The manipulation of the argument key results in information exposure through error message. Access to the local network is required for this attack. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

References (4)

Core 4

Core References

Vdb Entry, Technical Description vdb-entry technical-description

VDB-353881 | wandb OpenUI APIStatusError server.py generic_exception_handler information exposure

https://vuldb.com/?id.353881

Signature, Permissions Required signature permissions-required

VDB-353881 | CTI Indicators (IOB, IOC, TTP, IOA)

https://vuldb.com/?ctiid.353881

Third Party Advisory third-party-advisory

Submit #778266 | Weights and Biases OpenUI <= 1.0 (commit f9d8f0e) Generation of Error Message Containing Sensitive Information (CWE-209)

https://vuldb.com/?submit.778266

Exploit exploit

https://gist.github.com/YLChen-007/8c6ff147186855e4b716e7526de213e1

Scores

CVSS v3 3.5

EPSS 0.0020

EPSS Percentile 9.7%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-200 CWE-209

Status published

Products (2)

wandb/OpenUI 1.0

wandb/OpenUI 3.5-turb

Published Mar 28, 2026

Tracked Since Mar 29, 2026