CVE-2024-5751

Опубликовано: 27 июн. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the add_deployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sending a malicious payload to the /config/update endpoint, which is then processed and executed by the server when the get_secret function is triggered. This requires the server to use Google KMS and a database to store a model.

Ссылки

https://huntr.com/bounties/ae623c2f-b64b-4245-9ed4-f13a0a5824ce
Third Party Advisory
https://huntr.com/bounties/ae623c2f-b64b-4245-9ed4-f13a0a5824ce
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:litellm:litellm:1.35.8:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05359

Низкий

9.8 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-gppg-gqw8-wh9g

CVSS3: 9.8

github

больше 1 года назад

litellm vulnerable to remote code execution based on using eval unsafely

EPSS

Процентиль: 90%

0.05359

Низкий

9.8 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-94