Lucene search
+L

13 matches found

Nuclei
Nuclei
added yesterday31 views

LiteLLM - Arbitrary File Read

LiteLLM 1.83.0 contains a broken access control vulnerability caused by lack of admin role enforcement on /config/update endpoint, letting authenticated users modify configurations, execute code, read files, and take over accounts. id: CVE-2026-35029 info: name: LiteLLM - Arbitrary File Read...

8.8CVSS5.3AI score0.26409EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/07/09 10:4 p.m.31 views

CVE-2026-58143 Cotonti Siena 0.9.26 CSRF via admin.php Config Update Endpoint

Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticated attackers to modify administrator configuration by tricking a logged-in administrator into submitting a forged POST request to the admin.php config update handler, which never invokes...

8.8CVSS0.00175EPSS
Exploits0References2
CVE
CVE
added 2026/04/06 4:35 p.m.94 views

CVE-2026-35029

CVE-2026-35029 affects LiteLLM, a proxy AI Gateway. The /config/update endpoint lacks admin authorization, allowing an authenticated user to modify proxy config and environment variables, register attacker-controlled Python code handlers, achieve remote code execution, read arbitrary server files...

8.8CVSS6.3AI score0.26409EPSS
Exploits2References8Affected Software1
OSV
OSV
added 2026/04/06 4:35 p.m.2 views

CVE-2026-35029 LiteLLM affected by privilege escalation via unrestricted proxy configuration endpoint

LiteLLM is a proxy server AI Gateway to call LLM APIs in OpenAI or native format. Prior to 1.83.0, the /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to modify proxy configuration and environment...

8.7CVSS6.3AI score0.26409EPSS
Exploits2References10
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.7 views

PT-2026-30278

Name of the Vulnerable Software and Affected Versions LiteLLM versions prior to 1.83.0 Description LiteLLM is a proxy server for LLM APIs. The /config/update API endpoint did not enforce admin role authorization, allowing authenticated users to modify proxy configurations and environment variable...

8.8CVSS6.5AI score0.26409EPSS
Exploits2References25
Github Security Blog
Github Security Blog
added 2024/06/27 9:32 p.m.25 views

litellm vulnerable to remote code execution based on using eval unsafely

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS7.5AI score0.00875EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/06/27 9:32 p.m.12 views

GHSA-GPPG-GQW8-WH9G litellm vulnerable to remote code execution based on using eval unsafely

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS7.4AI score0.00875EPSS
Exploits0References5
NVD
NVD
added 2024/06/27 7:15 p.m.39 views

CVE-2024-5751

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS0.00875EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/27 6:40 p.m.14 views

CVE-2024-5751 Remote Code Execution in BerriAI/litellm

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the adddeployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sendin...

9.8CVSS7.5AI score0.00875EPSS
Exploits0References1
CVE
CVE
added 2024/06/27 6:40 p.m.62 views

CVE-2024-5751

CVE-2024-5751 affects BerriAI/litellm v1.35.8. The vulnerability is in the add_deployment function, which base64-decodes and decrypts environment variables into os.environ; an attacker can trigger remote code execution by sending a malicious payload to /config/update, processed when get_secret ru...

9.8CVSS9.7AI score0.00875EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.10 views

PT-2024-37119

Name of the Vulnerable Software and Affected Versions: BerriAI/litellm version v1.35.8 Description: The issue allows an attacker to achieve remote code execution. It exists in the add deployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ...

9.8CVSS7.6AI score0.00875EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2024/05/18 12:0 a.m.20 views

CVE-2024-4264 Remote Code Execution in berriai/litellm

A remote code execution RCE vulnerability exists in the berriai/litellm project due to improper control of the generation of code when using the eval function unsafely in the litellm.getsecret method. Specifically, when the server utilizes Google KMS, untrusted data is passed to the eval function...

9.8CVSS8.1AI score0.00876EPSS
Exploits0References1
CVE
CVE
added 2024/05/18 12:0 a.m.55 views

CVE-2024-4264

The CVE-2024-4264 entry affects berriai/litellm. The vulnerability is caused by unsafe use of eval in litellm.get_secret() when the server uses Google KMS, allowing untrusted data to be evaluated. Attackers can inject malicious values into environment variables via the /config/update endpoint, en...

9.8CVSS9.7AI score0.00876EPSS
Exploits0References1
Rows per page
Query Builder