Critical severityNVD Advisory· Published Jun 27, 2024· Updated Oct 15, 2025
Remote Code Execution in BerriAI/litellm
CVE-2024-5751
Description
BerriAI/litellm version v1.35.8 contains a vulnerability where an attacker can achieve remote code execution. The vulnerability exists in the add_deployment function, which decodes and decrypts environment variables from base64 and assigns them to os.environ. An attacker can exploit this by sending a malicious payload to the /config/update endpoint, which is then processed and executed by the server when the get_secret function is triggered. This requires the server to use Google KMS and a database to store a model.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
litellmPyPI | < 1.40.16 | 1.40.16 |
Affected products
2- berriai/berriai/litellmv5Range: unspecified
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.