← signals
2026-07-08·LITELLM·security vulnerability cluster
highdown

A cluster of 15+ security advisories for LITELLM (CVE-2024-2952, CVE-2024-4264, CVE-2024-4888, CVE-2024-4890,...

A cluster of 15+ security advisories for LITELLM (CVE-2024-2952, CVE-2024-4264, CVE-2024-4888, CVE-2024-4890, CVE-2024-5225, CVE-2024-5710, CVE-2024-5751, CVE-2024-6587, CVE-2024-6825, CVE-2024-8984, CVE-2024-9606, CVE-2024-10188, CVE-2025-0330, CVE-2025-0628, CVE-2026-35030, CVE-2026-42208, CVE-2026-49468) were published between June 29 and July 8, 2026, on OSV.

window 30devidence 19confidence score 100

confidence score

Strong evidence: 2 independent source classes support this read.

100
high confidence2 independent source classesotherpasses publish gate

signal brief

A cluster of 15+ security advisories for LITELLM (CVE-2024-2952, CVE-2024-4264, CVE-2024-4888, CVE-2024-4890, CVE-2024-5225, CVE-2024-5710, CVE-2024-5751, CVE-2024-6587, CVE-2024-6825, CVE-2024-8984, CVE-2024-9606, CVE-2024-10188, CVE-2025-0330, CVE-2025-0628, CVE-2026-35030, CVE-2026-42208, CVE-2026-49468) were published between June 29 and July 8, 2026, on OSV. The vulnerabilities include Remote Code Execution (RCE), authentication bypass via host header injection, SQL injection, arbitrary file deletion, SSRF, DoS, leakage of API keys, improper authorization, and unsafe use of eval. These flaws affect LITELLM versions prior to the latest development release (1.93.0.dev1, published July 8). The simultaneous disclosure of multiple severe vulnerabilities indicates a systemic security weakness. Users are advised to upgrade immediately, but the rapid discovery chain may erode trust in LITELLM as a reliable proxy for LLM access. This is particularly damaging for enterprises relying on LITELLM for production workflows; adoption may slow as security reviews intensify.

What the sources said

source data used

Decision support, not stock advice. This signal is research with cited evidence — not a recommendation to buy, sell, or hold any security.