litellm@1.59.6 vulnerabilities

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via the get_redirect_response_from_openid and forward_upstream_to_client functions. An attacker can obtain sensitive authentication credentials such as plaintext jwt_token and related data.

Upgrade litellm to version 1.77.7 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Missing Authentication for Critical Function via sensitive in-memory cache debug endpoints. An unauthenticated attacker can access sensitive cached information by accessing the /memory-usage-in-mem-cache and /memory-usage-in-mem-cache-items routes.

Upgrade litellm to version 1.76.3 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Incorrect Authorization via incomplete role-based checks in the _check_proxy_admin_viewer_access function. An attacker can modify user credentials by sending crafted requests to endpoints such as /key/generate, /key/update when assigned with the PROXY_ADMIN_VIEW_ONLY role.

Upgrade litellm to version 1.77.1 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to SQL Injection via the /key/block endpoint. A proxy_admin_viewer user can retrieve the contents of arbitrary files on the target filesystem by brute forcing them one character at a time.

Upgrade litellm to version 1.74.9.dev2 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to SQL Injection via spend_management_endpoints.py. An attacker could potentially inject malicious SQL code through unsanitized input, leading to unauthorized data access or manipulation.

Upgrade litellm to version 1.67.4.dev1 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource on the Azure OpenAI route. The get_model_from_request() function does not necessarily enforce access restrictions, when an attacker specifies the target model as a URL parameter and not in the payload of the request.

Upgrade litellm to version 1.64.1 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Improper Authorization due to the overly privileged API key assigned to internal_user_viewer roles. An attacker can escalate privileges within the application by accessing administrative functions such as /users/list and /users/get_users.

Upgrade litellm to version 1.61.15 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Arbitrary Command Injection through the post_call_rules configuration. An attacker can execute arbitrary commands by setting a system method, such as os.system, as a callback, which is executed when a chat response is processed.

Upgrade litellm to version 1.65.5 or higher.

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to Exposure of Sensitive Information Through Metadata due to an issue in proxy_server.py. An attacker can obtain sensitive information, including API keys, by triggering error conditions during the parsing of team settings.

Upgrade litellm to version 1.65.5 or higher.