Diamond Member ThaHaka 0 Posted June 15 Diamond Member Share Posted June 15 This is the hidden content, please Sign In or Sign Up A default low-privilege account on a LiteLLM proxy can climb to full admin and run code on the server by chaining three vulnerabilities, researchers at Obsidian Security disclosed LiteLLM is a widely deployed open-source AI gateway that brokers calls to more than 100 model providers behind one OpenAI-compatible interface. A server takeover exposes every provider key it holds, the secrets that This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/317906-h4ckn3wslitellm-vulnerability-chain-lets-low-privilege-users-take-over-ai-gateway-servers/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.