Auth bypass in Berriai Litellm

CVE-2026-59822

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, LiteLLM's MCP Streamable HTTP endpoint allowed an unauthenticated attacker to use a fabricated Authorization header to trigger an OAuth2…

Vulnerability class: Broken Authentication

Affected products

Weakness classification (CWE)

References