{
 "description": "Evidence-bound MITRE ATT&CK techniques observed in ctipilot.ch entries referencing Open WebUI /api/openai/responses proxy reaches any model without per-model authz. Score = number of published entries mapping the technique. Pinned dataset: ATT&CK v19.1.",
 "domain": "enterprise-attack",
 "gradient": {
  "colors": [
   "#ffe766",
   "#ff6666"
  ],
  "maxValue": 1,
  "minValue": 0
 },
 "hideDisabled": false,
 "layout": {
  "layout": "side",
  "showID": true,
  "showName": true
 },
 "legendItems": [],
 "metadata": [
  {
   "name": "source",
   "value": "ctipilot.ch"
  },
  {
   "name": "entity",
   "value": "CVE-2026-44556"
  },
  {
   "name": "attack_version",
   "value": "19.1"
  }
 ],
 "name": "Open WebUI /api/openai/responses proxy reaches any model without per-model authz \u2014 ctipilot.ch coverage",
 "sorting": 3,
 "techniques": [
  {
   "comment": "entries: 2026-07-10/open-webui-recurring-broken-access-control-cve-cluster",
   "score": 1,
   "techniqueID": "T1059.006"
  },
  {
   "comment": "entries: 2026-07-10/open-webui-recurring-broken-access-control-cve-cluster",
   "score": 1,
   "techniqueID": "T1059.007"
  },
  {
   "comment": "entries: 2026-07-10/open-webui-recurring-broken-access-control-cve-cluster",
   "score": 1,
   "techniqueID": "T1190"
  },
  {
   "comment": "entries: 2026-07-10/open-webui-recurring-broken-access-control-cve-cluster",
   "score": 1,
   "techniqueID": "T1539"
  },
  {
   "showSubtechniques": true,
   "techniqueID": "T1059"
  }
 ],
 "versions": {
  "attack": "19",
  "layer": "4.5",
  "navigator": "5.1.0"
 }
}