3 matches found
CVE-2024-6587
A Server-Side Request Forgery SSRF vulnerability exists in berriai/litellm version 1.38.10. This vulnerability allows users to specify the apibase parameter when making requests to POST /chat/completions, causing the application to send the request to the domain specified by apibase. This request...
CVE-2024-6587
creationtimestamp| type| source ---|---|--- 2024-09-13 18:48:15+00:00| seen| https://t.me/cvedetector/5622 2025-03-09 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-03-09 2025-03-14 15:30:06+00:00| exploited| https://t.me/truesecator/6843 2026-06-23...
01os (>=0.0.1 <=0.0.13), agenta (>=0.14.1a0 <=0.14.7a1) +104 more potentially affected by CVE-2024-6587 via litellm (>=0.1.400 <=1.44.7)
litellm PYPI version =0.1.400, =0.0.1, =0.14.1a0, =0.0.5, =0.0.4, =1.0.3, =0.2.0, =0.29.0, =0.1.5, =0.1.0, =0.1.0, =0.0.1, =0.1.10 - bbook-maker =0.5.1 and more Source cves: CVE-2024-6587 Source advisory: OSV:GHSA-G26J-5385-HHW3...