Obsidian Security researchers discovered a critical vulnerability chain in LiteLLM, a widely-used open-source AI gateway, that allows low-privilege accounts to escalate to full admin access and execute arbitrary code on servers. The exploit chains three separate vulnerabilities and could expose all provider API keys and secrets stored on compromised LiteLLM proxy servers, which broker calls to ove
A default low-privilege account on a LiteLLM proxy can climb to full admin and run code on the server by chaining three vulnerabilities, researchers at Obsidian Security disclosed LiteLLM is a widely deployed open-source AI gateway that brokers calls to more than 100 model providers behind one OpenAI-compatible interface. A server takeover exposes every provider key it holds, the secrets that
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
