CVE-2024-10188
NONE EPSS 40.5%
Published Mar 20, 20251y ago · Modified Jun 17, 20261w ago
Published Mar 20, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
Description
A vulnerability in BerriAI/litellm, as of commit 26c03c9, allows unauthenticated users to cause a Denial of Service (DoS) by exploiting the use of ast.literal_eval to parse user input. This function is not safe and is prone to DoS attacks, which can crash the litellm Python server.
Threat Intelligence
EPSS Exploit Probability
40.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-400 Uncontrolled Resource Consumption Resource Mgmt
References 2
- github.com https://github.com/berriai/litellm/commit/21156ff5d0d84a7dd93f951ca033275c77e4f73c
- huntr.com https://huntr.com/bounties/96a32812-213c-4819-ba4e-36143d35e95b
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.