CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Veracode•added 2025/03/26 11:13 a.m.•10 views

Sensitive Information Disclosure

LiteLLM is vulnerable to Sensitive Information Disclosure. The vulnerability is due to improper error handling due to an issue in proxyserver.py that leaks Langfuse API keys when an error occurs while parsing team settings, potentially exposing full access to stored requests...

7.5CVSS6.8AI score0.00368EPSS

Exploits1References3Affected Software1

RedhatCVE•added 2025/03/22 12:41 p.m.•12 views

CVE-2025-0330

In berriai/litellm version v1.52.1, an issue in proxyserver.py causes the leakage of Langfuse API keys when an error occurs while parsing team settings. This vulnerability exposes sensitive information, including langfusesecret and langfusepublickey, which can provide full access to the Langfuse...

7.5CVSS6.8AI score0.00368EPSS

Exploits1References1

Github Security Blog•added 2025/03/20 12:32 p.m.•32 views

LiteLLM Has a Leakage of Langfuse API Keys

7.5CVSS6.7AI score0.00368EPSS

Exploits1References3Affected Software1

OSV•added 2025/03/20 10:15 a.m.•2 views

CVE-2025-0330

7.5CVSS7.3AI score

Exploits0References1

Vulnrichment•added 2025/03/20 10:9 a.m.•5 views

CVE-2025-0330 Exposure of Sensitive Information in berriai/litellm

7.5CVSS7.5AI score0.00368EPSS

Exploits1References1

Cvelist•added 2025/03/20 10:9 a.m.•8 views

CVE-2025-0330 Exposure of Sensitive Information in berriai/litellm

7.5CVSS0.00368EPSS

Exploits1References1

CVE•added 2025/03/20 10:9 a.m.•80 views

CVE-2025-0330

The CVE-2025-0330 issue affects berriai/litellm v1.52.1, where a flaw in proxy_server.py leads to leakage of Langfuse API keys (langfuse_secret and langfuse_public_key) when parsing team settings. This reportedly grants full access to the Langfuse project storing all requests. Connected documents...

7.5CVSS7.5AI score0.00368EPSS

Exploits1References1Affected Software1