Known Vulnerabilities for products from Litellm
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Litellm".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59822 json | Not Provided | 2026-07-08 | 2026-07-09 | |
| CVE-2026-59821 json | Not Provided | 2026-07-08 | 2026-07-09 | |
| CVE-2026-59820 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.7-stable, LiteLLM Skills ... | Not Provided | 2026-07-08 | 2026-07-13 |
| CVE-2026-59819 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.10-stable, LiteLLM's /hea... | Not Provided | 2026-07-08 | 2026-07-13 |
| CVE-2026-49468 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, a Host-header parsing ... | Not Provided | 2026-06-22 | 2026-07-08 |
| CVE-2026-47102 json | Not Provided | 2026-05-21 | 2026-07-02 | |
| CVE-2026-47101 json | LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that their role does ... | Not Provided | 2026-05-21 | 2026-07-01 |
| CVE-2026-42271 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.74.2 to before version 1... | Not Provided | 2026-05-08 | 2026-06-30 |
| CVE-2026-42208 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.81.16 to before version ... | Not Provided | 2026-05-08 | 2026-06-29 |
| CVE-2026-42203 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.80.5 to before version 1... | Not Provided | 2026-05-08 | 2026-06-30 |
| CVE-2026-40217 json | LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/test_c... | Not Provided | 2026-04-10 | 2026-06-30 |
| CVE-2026-35030 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.0, when JWT authenticatio... | Not Provided | 2026-04-06 | 2026-06-30 |
| CVE-2026-35029 json | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.0, the /config/update end... | Not Provided | 2026-04-06 | 2026-06-30 |
| CVE-2026-33634 json | Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.6... | Not Provided | 2026-03-23 | 2026-03-30 |
| CVE-2026-12799 json | A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this issue is the function ui_view_us... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-12798 json | A weakness has been identified in BerriAI litellm up to 1.82.2. Affected by this vulnerability is the function load_openapi_s... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-12797 json | A security flaw has been discovered in BerriAI litellm up to 1.82.5. Affected is the function async_pre_call_hook of the file... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-12796 json | A vulnerability was identified in BerriAI litellm up to 1.82.2. This impacts the function get_redirect_response_from_openid o... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-12795 json | A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/prox... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-12774 json | A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this vulnerability is the function _e... | Not Provided | 2026-06-21 | 2026-06-24 |