CVE-2026-40217

Summary

LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/test_custom_code URI.

Affected Software

VendorProductVersion RangeStatus
BerriAILiteLLMbb0639701796218a3447160e55c0f1097446e4e6085df7dfd39f476d4143743faffected

Weaknesses

  • CWE-420: CWE-420 Unprotected Alternate Channel

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

LiteLLM: LiteLLM: Arbitrary Code Execution via bytecode rewriting

Additional References

References