Critical Threat Alert: LiteLLM Proxy RCE Chain
Multiple vulnerabilities (SQLi, SSTI, and Command Injection) have been disclosed, allowing for full system compromise of LiteLLM instances.
Vulnerability Summary
| Advisory ID | Type | Access Level | Severity |
|---|---|---|---|
| GHSA-r75f-5x8p-qvmc | SQL Injection | Unauthenticated | Critical (9.3) |
| GHSA-xqmj-j6mv-4862 | SSTI | Authenticated | High |
| GHSA-v4p8-mg3p-g94g | Command Execution | Authenticated | High |
Remediation Guidance
Affected Versions: v1.81.16 – v1.83.6
Recommended Action: Immediately upgrade to v1.83.7-stable or later.
Network Hunting (runZero Query)
Identify exposed LiteLLM instances by searching for specific HTTP headers and HTML titles:
_asset.protocol:http AND protocol:http AND (html.title:=”LiteLLM%” OR last.html.title:=”LiteLLM%”)



