CVE-2026-12797 | BerriAI litellm up to 1.82.5 Completions Interface banned_keywords.py async_pre_call_hook prompt authorization

Inserito da Angelo Barbosa | Giu 20, 2026 | CVE

A vulnerability was found in BerriAI litellm up to 1.82.5 and classified as critical. Affected is the function async_pre_call_hook of the file enterprise/enterprise_hooks/banned_keywords.py of the component Completions Interface. The manipulation of the argument prompt results in incorrect authorization.

This vulnerability was named CVE-2026-12797. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure.

CVE-2026-12797 | BerriAI litellm up to 1.82.5 Completions Interface banned_keywords.py async_pre_call_hook prompt authorization

Post correlati

CVE-2025-37747 | Linux Kernel up to 6.12.23/6.13.11/6.14.2/6.15-rc1 perf_event_overflow reference count

CVE-2024-32501 | Centreon prior 22.04.24/22.10.22/23.04.18/23.10.12/24.04.0 updateServiceHost_MC sql injection

CVE-2024-20501 | Cisco Meraki MX/Meraki Z AnyConnect VPN Server out-of-bounds write (cisco-sa-meraki-mx-vpn-dos-QTRHzG2)

CVE-2024-7576 | Progress Telerik UI for WPF prior 2024.3.924 deserialization