Description
A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this issue is the function ui_view_users of the file litellm/proxy/management_endpoints/internal_user_endpoints.py of the component Incomplete Fix CVE-2025-0628. Such manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure.
Published: 2026-06-21
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is located in the ui_view_users function within litellm/proxy/management_endpoints/internal_user_endpoints.py. The function fails to perform proper authorization checks, enabling an attacker to retrieve or manipulate internal user data through the endpoint. Because this endpoint is exposed over the network, the attack can be launched remotely without requiring local privileges. The weakness is classified as improper authorization (CWE-266, CWE-285, and CWE-639).

Affected Systems

BerriAI:litellm, versions up to and including 1.82.2 are affected. No other versions beyond 1.82.2 have been reported to contain the vulnerability.

Risk and Exploitability

The CVSS score is 5.3, indicating moderate risk. EPSS data is unavailable, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is remote network access to the exposed internal management API. Because the flaw exists in application code, it can be exploited by sending crafted requests to the ui_view_users endpoint without needing elevated privileges on the host.

Generated by OpenCVE AI on June 23, 2026 at 13:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade BerriAI litellm to any release newer than 1.82.2 where the ui_view_users endpoint authorization is correctly enforced.
  • If an upgrade cannot be performed immediately, restrict external network traffic to the internal management API endpoints using firewall rules or network segmentation so that only trusted internal hosts can reach them.
  • In the interim, enforce additional role‑based access checks on the ui_view_users endpoint through custom middleware or application configuration to ensure only authorized users can invoke the function.

Generated by OpenCVE AI on June 23, 2026 at 13:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 23 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-639
References
Metrics threat_severity

None

threat_severity

Moderate


Mon, 22 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Berriai
Berriai litellm
Vendors & Products Berriai
Berriai litellm

Sun, 21 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this issue is the function ui_view_users of the file litellm/proxy/management_endpoints/internal_user_endpoints.py of the component Incomplete Fix CVE-2025-0628. Such manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure.
Title BerriAI litellm Incomplete Fix CVE-2025-0628 internal_user_endpoints.py ui_view_users improper authorization
First Time appeared Litellm
Litellm litellm
Weaknesses CWE-266
CWE-285
CPEs cpe:2.3:a:litellm:litellm:*:*:*:*:*:*:*:*
Vendors & Products Litellm
Litellm litellm
References
Metrics cvssV2_0

{'score': 4, 'vector': 'AV:N/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:ND/RC:C'}

cvssV3_0

{'score': 4.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:C'}

cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:C'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-22T16:17:02.857Z

Reserved: 2026-06-20T17:12:23.228Z

Link: CVE-2026-12799

cve-icon Vulnrichment

Updated: 2026-06-22T16:15:58.121Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-21T10:00:08Z

Links: CVE-2026-12799 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-23T13:45:03Z

Weaknesses
  • CWE-266

    Incorrect Privilege Assignment

  • CWE-285

    Improper Authorization

  • CWE-639

    Authorization Bypass Through User-Controlled Key