LiteLLM

LiteLLM, a popular open-source library that provides a unified interface for multiple large language models, has a high-severity vulnerability (CVSS 7.2) that can be exploited remotely by authenticated users with high privileges to achieve complete compromise of confidentiality, integrity, and authenticity. The attack requires network access and high-level permissions but no user interaction, making it a significant risk in environments where LiteLLM is deployed with administrative access. Security teams should monitor for patches after the April 2026 vendor deadline and assess whether their implementations expose LiteLLM to trusted internal users who could potentially abuse elevated privileges.