AI Threat Alert
LiteLLM
pip LLM Inference10
Total CVEs
1
Critical
pip
Ecosystem
Mar 25, 2026
Last CVE
Known Vulnerabilities (10 shown)
Severity CVE ID Summary CVSS Published
CRITICAL GHSA-5mg7-485q-xm76 litellm: supply chain attack harvests AI API credentials -- Mar 25, 2026 HIGH CVE-2024-6825 LiteLLM: RCE via post_call_rules callback injection 8.8 Mar 20, 2025 HIGH CVE-2025-0330 LiteLLM: Langfuse API key leak via error handling 7.5 Mar 20, 2025 HIGH CVE-2025-0628 litellm: privilege escalation viewer→proxy admin via bad API key 8.1 Mar 20, 2025 HIGH CVE-2024-9606 LiteLLM: API key leakage in logs exposes credentials 7.5 Mar 20, 2025 HIGH CVE-2024-8984 litellm: unauthenticated DoS via multipart boundary parsing 7.5 Mar 20, 2025 MEDIUM CVE-2025-45809 LiteLLM: SQL injection in key management API 5.4 Jul 3, 2025 HIGH CVE-2024-10188 litellm: unauthenticated DoS crashes LLM proxy server 7.5 Mar 20, 2025 HIGH CVE-2024-6587 LiteLLM: SSRF leaks OpenAI API key to attacker 7.5 Sep 13, 2024 HIGH CVE-2024-4888 litellm: arbitrary file deletion via audio endpoint 8.1 Jun 6, 2024 Monitor LiteLLM in your stack
Get instant alerts when new vulnerabilities affect LiteLLM. CISO analysis, ATLAS technique mappings, and compliance reports included.
Start Monitoring