LiteLLM

LiteLLM is an open-source library that provides a unified interface for large language model APIs. This medium-severity vulnerability (CVSS 6.4) can be exploited remotely by authenticated users without user interaction, potentially allowing attackers to gain limited access to confidential information and make unauthorized changes, though system availability is not affected. Security teams should monitor for this issue and prepare patches once the vendor deadline of July 28, 2026 passes, as authenticated attackers on their networks could potentially leverage this flaw for privilege escalation or data exposure.