CVE-2024-4888

Name of the Vulnerable Software and Affected Versions BerriAI's litellm version latest

Description The issue arises from improper input validation on the "/audio/transcriptions" endpoint, allowing an attacker to send a specially crafted request that includes a file path to the server. This results in the deletion of the specified file without proper authorization or validation. The vulnerability is present in the code where os.remove(file.filename) is used to delete a file, enabling any user to delete critical files on the server, such as SSH keys, SQLite databases, or configuration files.

Recommendations As a temporary workaround, consider disabling the os.remove(file.filename) function until a patch is available. Restrict access to the "/audio/transcriptions" endpoint to minimize the risk of exploitation. Avoid using the file.filename variable in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.