CVE 9.5 CRITICAL

LiteLLM: Authentication Bypass via Host Header Injection_CVE-2026-49468

June 22, 2026 invoker category_cve

9.5 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Description

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, This vulnerability is fixed in 1.84.0.

AI Analysis

Authentication Bypass via Host Header Injection in LiteLLM proxy server

Basic Information

ID CVE-2026-49468

Source GitHub_M

Published Jun 22, 2026 at 20:37

Affected Product

Vendor BerriAI

Product litellm

Version < 1.84.0

Affected Versions BerriAI litellm < 1.84.0

CWE Classification

CWE-290

AI Assessment

AI Score 9.5 / 10

AI Severity Critical

Vendor BerriAI

Product LiteLLM

Version < 1.84.0

References

{
    "lastseen": "",
    "description": "LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0,  This vulnerability is fixed in 1.84.0.",
    "published": "2026-06-22T20:37:14.494Z",
    "modified": "2026-06-22T20:37:14.494Z",
    "type": "cve",
    "title": "LiteLLM: Authentication Bypass via Host Header Injection",
    "source": "GitHub_M",
    "references": "https://github.com/BerriAI/litellm/security/advisories/GHSA-4xpc-pv4p-pm3w\nhttps://github.com/BerriAI/litellm/releases/tag/v1.84.0",
    "id": "CVE-2026-49468",
    "bulletinFamily": "",
    "cwe": [
        "CWE-290"
    ],
    "cvelist": null,
    "sourceData": "BerriAI litellm < 1.84.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.5,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "litellm",
    "version": "< 1.84.0",
    "vendor": "BerriAI",
    "ai_description": "Authentication Bypass via Host Header Injection in LiteLLM proxy server",
    "ai_severity": "Critical",
    "ai_vendor": "BerriAI",
    "ai_product": "LiteLLM",
    "ai_version": "< 1.84.0",
    "ai_score": 9.5
}

💭 Join the Security Discussion ❌ Cancel Reply