Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting litellm.
- CVE-2026-47102LiteLLM < 1.83.10 Privilege Escalation via User Update8.8
- CVE-2026-47101LiteLLM < 1.83.14 Privilege Escalation via API Key Generation8.8
- CVE-2026-42208LiteLLM: SQL injection in Proxy API key verificationKEV9.8
- CVE-2026-42203LiteLLM: Server-Side Template Injection in /prompts/test endpoint8.8
- CVE-2026-42271LiteLLM: Authenticated command execution via MCP stdio test endpointsKEV8.8
- CVE-2026-40217LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/test_custom_code URI.8.8
- CVE-2026-35030LiteLLM has an authentication bypass via OIDC userinfo cache key collision9.1
- CVE-2026-35029LiteLLM affected by privilege escalation via unrestricted proxy configuration endpoint8.8
- CVE-2026-33634Trivy ecosystem supply chain briefly compromisedKEV8.8
- CVE-2025-11203LiteLLM Information health API_KEY Information Disclosure Vulnerability3.5
- CVE-2025-45809SQL Injection vulnerability in BerriAI LiteLLM before 1.81.0 allows attackers to execute arbitrary commands via the key parameter to the "/key/block" and "/key/unblock" API endpoints.5.4
- CVE-2024-6825Remote Code Execution in BerriAI/litellm8.8
- CVE-2025-0330Exposure of Sensitive Information in berriai/litellm7.5
- CVE-2024-9606Improper Output Neutralization for Logs in berriai/litellm7.5
- CVE-2024-8984Denial of Service (DoS) in berriai/litellm7.5