CVE-2026-47101 – litellm

CVSS 8.8 IMPORTANT

“Authorization gaps in AI gateways can quietly hand attackers elevated control over critical services.”

BerriAI released patches for two high-severity vulnerabilities affecting litellm. CVE-2026-47101 has a CVSS score of 8.8, which is High severity. CVE-2026-47102 has a CVSS score of 8.8, which is High severity.

The vulnerabilities are tied to improper authorization handling that could allow attackers to gain elevated privileges within affected litellm deployments. Public proof-of-concept code is available for both issues. The updates strengthen authorization controls and reduce the risk of unauthorized access to AI gateway operations and connected backend services.

Key Details

Affected Product: Litellm Litellm
Attack Vector: Network
Attack Complexity: Low
Privileges Required: Low
User Interaction: None
CWE Classification: CWE-863

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-47101 – litellm

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002