CVE-2024-10188

NONE EPSS 40.5%
Published Mar 20, 20251y ago · Modified Jun 17, 20261w ago
Find Similar
Published Mar 20, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in BerriAI/litellm, as of commit 26c03c9, allows unauthenticated users to cause a Denial of Service (DoS) by exploiting the use of ast.literal_eval to parse user input. This function is not safe and is prone to DoS attacks, which can crash the litellm Python server.

Threat Intelligence

EPSS Exploit Probability
40.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-400 Uncontrolled Resource Consumption Resource Mgmt

References 2

  • github.com https://github.com/berriai/litellm/commit/21156ff5d0d84a7dd93f951ca033275c77e4f73c
  • huntr.com https://huntr.com/bounties/96a32812-213c-4819-ba4e-36143d35e95b

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.