CVE-2026-47101HIGHCVSS 8.8

LiteLLM allows an authenticated internal_user to create API keys with access to routes that their role does not permit

Published May 21, 2026·Updated Jun 23, 2026

Description

LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that their role does not permit. When generating a key, the allowed_routes field is stored without verifying that the specified routes fall within the user's own permissions. A key created with access to admin-only routes can then be used to reach those routes successfully, bypassing the role-based access controls that would otherwise block the request, enabling full privilege escalation from internal_user to proxy_admin.

Affected Packages (1)

litellmPYPI

Fixed in 1.83.14

Public Exploits & PoCs2 found

PoC: CVE-LiteLLM

CVE-2026-47101, CVE-2026-47102, CVE-2026-40217

PoC: CVE-2026-47101-PoC

The code for personally reproducing the corresponding vulnerability

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Start monitoring free