User Impersonation Affecting litellm package, versions [,1.84.0)


Severity

Recommended
0.0
critical
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

Social Trends
EPSS
0.56% (43rd percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-PYTHON-LITELLM-17373069
  • published18 Jun 2026
  • disclosed16 Jun 2026
  • creditLilThawg29

Introduced: 16 Jun 2026

NewCVE-2026-49468  (opens in a new tab)
CWE-290  (opens in a new tab)

How to fix?

Upgrade litellm to version 1.84.0 or higher.

Overview

litellm is a Library to easily interface with LLM API providers

Affected versions of this package are vulnerable to User Impersonation via manipulation of the Host header during HTTP requests. An attacker can gain unauthorized access to protected management routes by crafting a malicious Host header that causes the authentication layer to evaluate a different route than intended.

Note: This is only exploitable if there is no upstream component (such as a CDN, WAF, reverse proxy with explicit server name allowlists, or host-based load balancer) validating or normalizing the Host header before forwarding requests.

Workaround

This vulnerability can be mitigated by placing the proxy behind an upstream component that validates or normalizes the Host header, or by restricting network access to the proxy listener.

CVSS Base Scores

version 4.0
version 3.1