Privilege Escalation Vulnerability in LiteLLM by BerriAI
CVE-2026-47101

8.7HIGH

Key Information:

Vendor: Berriai
Status: Litellm
Vendor: CVE Published:; 21 May 2026

Badges

👾 Exploit Exists

What is CVE-2026-47101?

A vulnerability in LiteLLM prior to version 1.83.14 allows an authenticated internal user to generate API keys with access to restricted routes. The vulnerability allows the 'allowed_routes' field to be set without proper validation against the user's role permissions. As a result, keys can be created that grant access to admin-only routes, effectively bypassing role-based access controls. This enables attackers to escalate their privileges from an internal user to that of a proxy admin, potentially allowing unauthorized operations within the system.

Affected Version(s)

litellm 0

References

https://gist.github.com/13ph03nix/9ec616e1fdc77b3673509c6...

technical-descriptionexploit

https://huntr.com/bounties/8e75edfb-ff05-4e63-bfca-2d93d0...

third-party-advisoryexploit

https://github.com/BerriAI/litellm/releases/tag/v1.83.14-...

release-notes

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
May 21, 2026
👾
Exploit known to exist
May 21, 2026
Vulnerability published
May 21, 2026
Vulnerability Reserved
May 18, 2026

Credit

Fenix Qiao (aka 13ph03nix) from Obsidian Security

CVE-2026-47101 Data

JSON

Berriai

Badges

What is CVE-2026-47101?

Affected Version(s)

References

CVSS V4

Timeline

Credit