Black & White Path

Jun 16, 2026 · Information Security

Low‑Privileged User Can Hijack LiteLLM AI Gateway via a Three‑Step Exploit Chain

The article details a three‑vulnerability chain (CVE‑2026‑47101, CVE‑2026‑47102, CVE‑2026‑40217) in the open‑source LiteLLM AI gateway that lets a default low‑privilege account bypass authorization, elevate to proxy_admin, escape the sandbox and execute arbitrary code, exposing master keys, provider credentials and all traffic through the gateway.