Lucene search
K

Improper Authorization

🗓️ 20 Mar 2025 18:43:20Reported by SnykType 
snyk
 snyk
🔗 security.snyk.io👁 3 Views

Litellm improper authorization allows privilege escalation via internal_user_viewer role; upgrade to 1.61.15

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Huntr
Logging into webui as view only internal user provides overly privileged bearer key
14 Nov 202416:44
huntr
Circl
CVE-2025-0628
20 Mar 202512:48
circl
CNNVD
LiteLLM 授权问题漏洞
20 Mar 202500:00
cnnvd
CVE
CVE-2025-0628
20 Mar 202510:10
cve
Cvelist
CVE-2025-0628 Improper Authorization in BerriAI/litellm
20 Mar 202510:10
cvelist
EUVD
EUVD-2025-6827
3 Oct 202520:07
euvd
EUVD
EUVD-2026-38158
21 Jun 202610:00
euvd
Github Security Blog
LiteLLM Has an Improper Authorization Vulnerability
20 Mar 202512:32
github
NVD
CVE-2025-0628
20 Mar 202510:15
nvd
OSV
CVE-2025-0628 Improper Authorization in BerriAI/litellm
20 Mar 202510:10
osv
Rows per page
Vulners
Node
litellmlitellmRange<1.61.15

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

20 Mar 2025 18:43Current
7.1High risk
Vulners AI Score7.1
CVSS 3.18.1
CVSS 48.6
CVSS 38.1
EPSS0.00315
SSVC
3