Vulnerability in Berriai Litellm

CVE-2026-49468

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, This vulnerability is fixed in 1.84.0.

Affected products

Berriai Litellm — versions < 1.84.0

Weakness classification (CWE)

CWE-290 — Authentication Bypass by Spoofing

References

security-advisories@github.com (x_refsource_CONFIRM)
security-advisories@github.com (x_refsource_MISC)