Miggo Logo
Miggo Vulnerability Database
CVE-2024-6587

CVE-2024-6587: LiteLLM Server-Side Request Forgery (SSRF) vulnerability

7.5

CVSS Score
3.0

Basic Information

CVE ID
CVE-2024-6587
GHSA ID
GHSA-g26j-5385-hhw3
EPSS Score
0.9898%
CWE
CWE-918
Published
9/13/2024
Updated
9/13/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
litellmpip< 1.44.81.44.8

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stemmed from missing parameter validation in the request processing flow. The common_checks function in auth_checks.py was responsible for security validations but did not include the api_base/base_url check prior to the patch. This allowed attackers to inject malicious API endpoints through the request body. The fix added the is_request_body_safe check within common_checks, confirming it was the missing validation point in the vulnerable code path.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* S*rv*r-Si** R*qu*st *or**ry (SSR*) vuln*r**ility *xists in **rri*i/lit*llm v*rsion *.**.**. T*is vuln*r**ility *llows us*rs to sp**i*y t** `*pi_**s*` p*r*m*t*r w**n m*kin* r*qu*sts to `POST /***t/*ompl*tions`, **usin* t** *ppli**tion to s*n* t** r*

Reasoning

T** vuln*r**ility st*mm** *rom missin* p*r*m*t*r v*li**tion in t** r*qu*st pro**ssin* *low. T** *ommon_****ks *un*tion in *ut*_****ks.py w*s r*sponsi*l* *or s**urity v*li**tions *ut *i* not in*lu** t** *pi_**s*/**s*_url ****k prior to t** p*t**. T*is