CVE-2024-9606 in litellmالمعلومات

الملخص

بحسب MITRE • 20/03/2025

In berriai/litellm before version 1.44.12, the `litellm/litellm_core_utils/litellm_logging.py` file contains a vulnerability where the API key masking code only masks the first 5 characters of the key. This results in the leakage of almost the entire API key in the logs, exposing a significant amount of the secret key. The issue affects version v1.44.9.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

مسؤول

@huntr Ai

حجز

07/10/2024

إفشاء

20/03/2025

الاعتدال

تمت الموافقة

إدخال

VDB-300419

EPSS

0.00708

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!