CVE-2026-59821: LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.82.0-stable, LiteLLM's
Summary
LiteLLM is a proxy server (a middleman program that forwards requests to different AI language model services) that had a security flaw in versions before 1.82.0-stable. Privileged users could upload custom Python code (a programming language) to create or update guardrails (safety filters), but this code wasn't properly sandboxed (isolated from the rest of the system) and could expose secrets (sensitive credentials) stored in the server's memory. The vulnerability affected the production create and update paths but not the test endpoint.
Solution / Mitigation
Update to LiteLLM version 1.82.0-stable or later, where this issue is fixed.
Vulnerability Details
EPSS: 0.0%
July 8, 2026
Classification
Affected Vendors
Related Issues
CVE-2026-34371: LibreChat is a ChatGPT clone with additional features. Prior to 0.8.4, LibreChat trusts the name field returned by the e
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-59821
First tracked: July 8, 2026 at 08:07 PM
Classified by LLM (prompt v3) · confidence: 92%