Open WebUI

by Open WebUI Inc.v0.0.20

Last updated Jun 8, 2026

Your AI, right on your desktop. Open WebUI as a native app. Run models locally or connect to any server. No Docker, no terminal, no setup. Download, launch, chat.

Visit homepage

Install with winget

$ winget install --id OpenWebUI.OpenWebUI --exact --version 0.0.20

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for Open WebUI

Open WebUI uses EXE (NSIS). The silent install switches are /S.

One-line silent install (x64, user scope)

open-webui-x64-setup.exe /S

See the full silent install reference for Open WebUI →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v0.0.20

Architecture	Type	Scope	Install	Download
x64	EXE NSIS	user		Direct
arm64	EXE NSIS	user		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

medium6.5Fix in v0.8.0CVE-2026-45667affects before 0.8.0May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, GET /api/v1/memories/ef is accessible without authentication and executes request.app.state.EMBEDDING_FUNCTION(...). This allows any unauthenticated caller to trigg...
Patch Vendor advisory
medium6.5Fix in v0.8.11CVE-2026-45666affects before 0.8.11May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the API /api/v1/notes/{note_id} endpoint lacks proper authorization checks, allowing authenticated users to retrieve notes belonging to other users by guessing or...
Patch Vendor advisory
high8.1Fix in v0.8.0CVE-2026-45665affects before 0.8.0May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Banner component due to an improper sanitization order (specifically, DOMPurify is executed before t...
Vendor advisory
medium5.4Fix in v0.8.11CVE-2026-45365affects before 0.8.11May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, an internal-only bypass_filter parameter is exposed on the /openai/chat/completions and /ollama/api/chat HTTP endpoints via FastAPI query string binding, allowing...
Patch Vendor advisory
medium6.5Fix in v0.8.9CVE-2026-45351affects before 0.8.9May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.9, when a regular user [non-admin] logs into the application, a http://IP:8080/api/models? web request is initiated by the application and in response, it reveals the...
Vendor advisory
high7.1Fix in v0.8.6CVE-2026-45350affects before 0.8.6May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.6, there is a vulnerability in chat completion API, which allows attackers to bypass tool restrictions, potentially enabling unauthorized actions or access. In the cha...
Patch Vendor advisory
medium4.3Fix in v0.5.11CVE-2026-45347affects before 0.5.11May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.5.11, there is a blind server side request forgery (SSRF) via the PDF generate function. In the PDF export, user inputs are interpreted as HTML and embedded into the PDF...
Patch Vendor advisory
medium5.4Fix in v0.6.31CVE-2026-45346affects before 0.6.31May 15, 2026
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.31, there is a Cross-Site Scripting vulnerability in Open WebUI SVG renderer implementation. This vulnerability is fixed in 0.6.31.
Vendor advisory

Showing 8 of 25. Source: NVD, updated 1h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

ClaudeAnthropic, PBC
Anthropic.Claudev1.12603.1
Your AI partner on desktop. Fast, focused, and designed for deep work.
C
Codex CLIOpenAI, Inc.
OpenAI.Codexv0.139.0
Codex CLI is an open‑source local coding agent that runs in your terminal, letting you write, edit, and understand code without leaving the command line.
Claude CodeAnthropic PBC
Anthropic.ClaudeCodev2.1.176
Unleash Claude’s raw power directly in your terminal. Search million-line codebases instantly. Turn hours-long workflows into a single command. Your tools. Your workflow. Your codebase, evolving at thought speed.
AntigravityGoogle
Google.Antigravityv2.0.11
Experience liftoffwith the next-gen agent platform
Qwenqwen.ai
Alibaba.Qwenv1.0.3
Chat about email, screenshots, files, and anything on your screen.
LLM Wikillmwiki
nashsu.LLMWikiv0.4.23
A personal knowledge base that builds itself. LLM reads your documents, builds a structured wiki, and keeps it current.

More from Open WebUI Inc. or browse ai, chatbot, large-language-model.

Frequently asked questions

How do I install Open WebUI on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id OpenWebUI.OpenWebUI --exact --version 0.0.20. winget downloads the installer from Open WebUI Inc. and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Open WebUI silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id OpenWebUI.OpenWebUI --exact 0.0.20 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for Open WebUI?

Open WebUI uses EXE (NSIS). Run the downloaded installer with: open-webui-x64-setup.exe /S. The silent switches are /S.

How do I uninstall Open WebUI via winget?

Run: winget uninstall --id OpenWebUI.OpenWebUI --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Open WebUI's Apps & Features entry.

Is Open WebUI free?

Open WebUI is distributed under AGPL-3.0. Refer to the publisher (https://openwebui.com/) for the full license terms - Wingetly itself does not charge for installation.

Does Open WebUI work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Open WebUI directly from the publisher.

How do I keep Open WebUI up to date?

Run winget upgrade --id OpenWebUI.OpenWebUI --exact, or winget upgrade --all to update everything winget tracks. We index 10 versions of Open WebUI from microsoft/winget-pkgs.

Recent versions

0.0.20latest
0.0.19
0.0.18
0.0.17
0.0.16
0.0.15
0.0.14
0.0.13
0.0.12
0.0.10