Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

BerriAI — Vulnerabilities & Security Advisories 21

Browse all 21 CVE security advisories affecting BerriAI. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Berriai develops AI-powered code analysis tools to help developers identify and fix security vulnerabilities in their applications. Historically, the platform has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with 18 CVEs documented to date. Security researchers have identified issues related to improper input validation and insecure default configurations, though no major public security incidents have been reported. The tool's integration into development workflows creates potential attack surfaces if not properly configured, emphasizing the need for secure implementation practices beyond the tool's own security posture.

Top products by BerriAI: berriai/litellm litellm
CVE IDTitleCVSSSeverityPublished
CVE-2026-42208 LiteLLM: SQL injection in Proxy API key verification — litellmCWE-89--2026-05-08
CVE-2026-42203 LiteLLM: Server-Side Template Injection in /prompts/test endpoint — litellmCWE-1336--2026-05-08
CVE-2026-42271 LiteLLM: Authenticated command execution via MCP stdio test endpoints — litellmCWE-77--2026-05-08
CVE-2026-40217 LiteLLM 安全漏洞 — LiteLLMCWE-420 8.8 High2026-04-10
CVE-2026-35030 LiteLLM has an authentication bypass via OIDC userinfo cache key collision — litellmCWE-287 6.5AIMediumAI2026-04-06
CVE-2026-35029 LiteLLM affected by privilege escalation via unrestricted proxy configuration endpoint — litellmCWE-863 8.8AIHighAI2026-04-06
CVE-2024-6825 Remote Code Execution in BerriAI/litellm — berriai/litellmCWE-94 9.8 -2025-03-20
CVE-2024-10188 Denial of Service in BerriAI/litellm — berriai/litellmCWE-400 7.5 -2025-03-20
CVE-2025-0628 Improper Authorization in BerriAI/litellm — berriai/litellmCWE-266 8.8 -2025-03-20
CVE-2025-0330 Exposure of Sensitive Information in berriai/litellm — berriai/litellmCWE-1230 7.5 -2025-03-20
CVE-2024-9606 Improper Output Neutralization for Logs in berriai/litellm — berriai/litellmCWE-117 7.5 -2025-03-20
CVE-2024-8984 Denial of Service (DoS) in berriai/litellm — berriai/litellmCWE-770 7.5 -2025-03-20
CVE-2024-6587 SSRF in berriai/litellm — berriai/litellmCWE-918 8.1AIHighAI2024-09-13
CVE-2024-5710 Improper Access Control in Team Management in berriai/litellm — berriai/litellmCWE-862 9.1AICriticalAI2024-06-27
CVE-2024-5751 Remote Code Execution in BerriAI/litellm — berriai/litellmCWE-94 9.8AICriticalAI2024-06-27
CVE-2024-4888 Arbitrary File Deletion in BerriAI/litellm — berriai/litellmCWE-862 8.1AIHighAI2024-06-06
CVE-2024-4890 Blind SQL Injection in berriai/litellm — berriai/litellmCWE-89 7.5AIHighAI2024-06-06
CVE-2024-5225 SQL Injection in berriai/litellm — berriai/litellmCWE-89 9.8AICriticalAI2024-06-06
CVE-2024-4889 Code Injection in berriai/litellm — berriai/litellmCWE-94 7.8AIHighAI2024-06-06
CVE-2024-4264 Remote Code Execution in berriai/litellm — berriai/litellmCWE-94 9.8 -2024-05-18
CVE-2024-2952 Server-Side Template Injection in BerriAI/litellm — berriai/litellmCWE-76 9.8AICriticalAI2024-04-10

This page lists every published CVE security advisory associated with BerriAI. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.