Critical

litellm

Server-Side Template Injection Vulnerability in Chat Template Processing

A Server-Side Template Injection (SSTI) vulnerability was identified in the `hf_chat_template` method of the berriai/litellm application, specifically through the `/completions` endpoint. This vulnerability affects versions up to 1.23.2 and was patched in version 1.34.42. It allows attackers to execute arbitrary code on the server by manipulating the `chat_template` parameter.

Available publicly on Mar 25 2024

9.8

CVE:

CVE-2024-2952

CWE:

76:Improper Neutralization of Equivalent Special Elements

CVSS:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Credit:

mvlttt
AssessDetect

Premium

Remediate
Remediation Steps
  • Update berriai/litellm to version 1.34.42 or later.
  • Review and sanitize all user-supplied input, especially when used in template processing.
  • Implement strict content security policies to limit the impact of such vulnerabilities.
  • Regularly audit and test your application for security vulnerabilities.
Patch Details
  • Fixed Version: 1.34.42
  • Patch Commit: https://github.com/BerriAI/litellm/commit/8a1cdc901708b07b7ff4eca20f9cb0f1f0e8d0b3
Want more out of Sightline?

Sightline offers even more for premium customers

Go Premium

We have - related security advisories that are available with Sightline Premium.