Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:22 a.m.15 views

CVE-2024-5751

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS9.6AI score0.00875EPSS
Exploits0References1
OSV
OSV
added 2024/06/27 9:32 p.m.8 views

GHSA-GPPG-GQW8-WH9G litellm vulnerable to remote code execution based on using eval unsafely

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS7.4AI score0.00875EPSS
Exploits0References5
OSV
OSV
added 2024/06/27 7:15 p.m.9 views

CVE-2024-5751

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS7.5AI score
Exploits0References1
CNNVD
CNNVD
added 2024/06/27 12:0 a.m.5 views

LiteLLM Code Injection Vulnerability

LiteLLM is a LiteLLM open source application. All LLM APIs can be called using the OpenAI format. A code injection vulnerability exists in LiteLLM v1.35.8, which stems from the fact that the adddeployment function assigns base64 decoding and decryption environment variables to os.environ, which c...

9.8CVSS7.6AI score0.00875EPSS
Exploits0References2
Rows per page
Query Builder