Description
A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/proxy/management_endpoints/ui_sso.py of the component SSO Debug Flow. Executing a manipulation can lead to missing authentication. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.
Published: 2026-06-21
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw was found in the json.dumps function of the litellm SSO Debug Flow (ui_sso.py) that skips authentication checks. This omission allows an attacker to craft input that is processed without verifying identity, resulting in unauthorized access or impersonation. The vulnerability is classified as Authentication Failure (CWE-287) and Missing Authentication (CWE-306), and can be triggered remotely.

Affected Systems

The issue affects BerriAI litellm versions up to and including 1.82.2. Any installations running these or earlier releases should be considered exposed until the flaw is remediated.

Risk and Exploitability

With a CVSS score of 6.9, the flaw presents moderate severity. EPSS data is not available, and the vulnerability is not listed in KEV, but it is publicly disclosed and can be exploited from a remote source. The lack of authentication checks directly leads to a high impact for systems exposing the SSO Debug Flow interface, especially if that endpoint is reachable from untrusted networks.

Generated by OpenCVE AI on June 21, 2026 at 10:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update BerriAI litellm to a version that fixes the authentication slip in the SSO Debug Flow (i.e., a release newer than 1.82.2).
  • If an update cannot be applied immediately, block external access to the ui_sso.py SSO Debug Flow endpoint with a firewall or network ACL so only trusted internal hosts can reach it.
  • Enable detailed logging and real‑time alerting for any access attempts to the SSO Debug Flow endpoints, and investigate suspicious activity promptly.

Generated by OpenCVE AI on June 21, 2026 at 10:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 23 Jun 2026 03:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Berriai
Berriai litellm
Vendors & Products Berriai
Berriai litellm

Sun, 21 Jun 2026 09:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/proxy/management_endpoints/ui_sso.py of the component SSO Debug Flow. Executing a manipulation can lead to missing authentication. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.
Title BerriAI litellm SSO Debug Flow ui_sso.py json.dumps missing authentication
First Time appeared Litellm
Litellm litellm
Weaknesses CWE-287
CWE-306
CPEs cpe:2.3:a:litellm:litellm:*:*:*:*:*:*:*:*
Vendors & Products Litellm
Litellm litellm
References
Metrics cvssV2_0

{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 7.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-23T02:45:05.398Z

Reserved: 2026-06-20T17:12:12.975Z

Link: CVE-2026-12795

cve-icon Vulnrichment

Updated: 2026-06-23T02:45:00.724Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-21T12:00:16Z

Weaknesses
  • CWE-287

    Improper Authentication

  • CWE-306

    Missing Authentication for Critical Function