PT-2026-51211 · Berriai · Litellm

Eric-C

Published

2026-06-21

Updated

2026-06-21

CVE-2026-12797

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions BerriAI litellm versions prior to 1.82.6

Description An authorization bypass exists in the Completions Interface. The issue occurs within the async pre call hook() function located in the enterprise/enterprise hooks/banned keywords.py file. Remote attackers can manipulate the prompt argument to achieve incorrect authorization.

Recommendations Update to version 1.82.6 or later. As a temporary workaround, restrict access to the async pre call hook() function in the enterprise/enterprise hooks/banned keywords.py file.

Exploit

Fix

Incorrect Authorization

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-285

Related Identifiers

CVE-2026-12797

Affected Products

Litellm

PT-2026-51211 · Berriai · Litellm

CVE-2026-12797

Weakness Enumeration

Related Identifiers

Affected Products

References · 7