CVE-2026-12796
5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Summary
A vulnerability was identified in BerriAI litellm up to 1.82.2. This impacts the function get_redirect_response_from_openid of the file litellm/proxy/management_endpoints/ui_sso.py of the component SSO Authentication Flow. The manipulation leads to session expiration. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| BerriAI | litellm | 1.82.0 | affected |
| BerriAI | litellm | 1.82.1 | affected |
| BerriAI | litellm | 1.82.2 | affected |
Weaknesses
- CWE-613: Session Expiration
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
References
- https://vuldb.com/vuln/372558
- https://vuldb.com/vuln/372558/cti
- https://vuldb.com/cve/CVE-2026-12796
- https://vuldb.com/submit/811287
- https://gist.github.com/YLChen-007/5fa8af12e1b183674d7ca96d852fb697
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.