CVE-2026-47101

HIGH EPSS 45.8%
Published May 21, 20261mo ago · Modified Jun 17, 20261w ago
8.7 CVSS 4.0
High
Find Similar
Published May 21, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that their role does not permit. When generating a key, the allowed_routes field is stored without verifying that the specified routes fall within the user's own permissions. A key created with access to admin-only routes can then be used to reach those routes successfully, bypassing the role-based access controls that would otherwise block the request, enabling full privilege escalation from internal_user to proxy_admin.

CVSS Details

Base Score
8.7
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
45.8% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-863 Incorrect Authorization Authorization

Affected Products 1

VendorProductVersionRange
litellmlitellm* <1.83.14

References 8

  • gist.github.com https://gist.github.com/13ph03nix/9ec616e1fdc77b3673509c60206e827f
    ExploitMitigationThird Party Advisory
  • github.com https://github.com/BerriAI/litellm/commit/2220f3076ac89bd2a2e3439acf57dcfbec2434c9
    Patch
  • github.com https://github.com/BerriAI/litellm/commit/5190bd07eb23a037745d86328096f54378f1614a
    Patch
  • github.com https://github.com/BerriAI/litellm/commit/d910a95661fce3cdd36f3b06c03ecf9c46c6457c
    Patch
  • github.com https://github.com/BerriAI/litellm/releases/tag/v1.83.14-stable
    Release Notes
  • huntr.com https://huntr.com/bounties/8e75edfb-ff05-4e63-bfca-2d93d03fb3b9
    ExploitThird Party Advisory
  • obsidiansecurity.com https://www.obsidiansecurity.com/blog/litellm-privilege-escalation-rce
  • vulncheck.com https://www.vulncheck.com/advisories/litellm-privilege-escalation-via-api-key-generation
    Third Party Advisory

Remediation

  • github.com https://github.com/BerriAI/litellm/commit/2220f3076ac89bd2a2e3439acf57dcfbec2434c9
    Patch
  • github.com https://github.com/BerriAI/litellm/commit/5190bd07eb23a037745d86328096f54378f1614a
    Patch
  • github.com https://github.com/BerriAI/litellm/commit/d910a95661fce3cdd36f3b06c03ecf9c46c6457c
    Patch