Description
LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/test_custom_code URI.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- BerriAI / litellmbb0639701796218a3447160e55c0f1097446e4e6085df7dfd39f476d4143743f – bb0639701796218a3447160e55c0f1097446e4e6085df7dfd39f476d4143743f
References
- VENDOR_ADVISORYhttps://www.x41-dsec.de/lab/advisories/x41-2026-001-litellm/
Updated 3m ago · 2 sources