BerriAI's litellm, in its latest version, is vulnerable to arbitrary file deletion due to improper input validation on the `/audio/transcriptions` endpoint. An attacker can exploit this vulnerability by sending a specially crafted request that includes a file path to the server, which then deletes the specified file without proper authorization or validation. This vulnerability is present in the code where `os.remove(file.filename)` is used to delete a file, allowing any user to delete critical files on the server such as SSH keys, SQLite databases, or configuration files.
References
Link | Resource |
---|---|
https://huntr.com/bounties/48461d89-cf13-4ad3-a43e-0d37da08fc6c | Exploit Third Party Advisory |
Configurations
History
03 Nov 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
CWE |
17 Oct 2024, 18:38
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-862 | |
CPE | cpe:2.3:a:litellm:litellm:*:*:*:*:*:*:*:* | |
First Time |
Litellm litellm
Litellm |
|
References | () https://huntr.com/bounties/48461d89-cf13-4ad3-a43e-0d37da08fc6c - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.1 |
07 Jun 2024, 14:56
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
06 Jun 2024, 19:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-06 19:16
Updated : 2024-11-03 17:15
NVD link : CVE-2024-4888
Mitre link : CVE-2024-4888
CVE.ORG link : CVE-2024-4888
JSON object : View
Products Affected
litellm
- litellm
CWE
CWE-862
Missing Authorization