CVE-2026-47102 HIGH

CVE-2026-47102: LiteLLM < 1.83.10 Privilege Escalation via User Update

Vendor Berriai
Product litellm
Weakness CWE-863 · Incorrect authorization
Published May 21, 2026
Last update June 30, 2026

CVSS base score

8.7/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint. While the endpoint correctly restricts users to updating only their own account, it does not restrict which fields may be changed. A user who can reach this endpoint can set their role to proxy_admin, gaining full administrative access to LiteLLM including all users, teams, keys, models, and prompt history. Users with the org_admin role have legitimate access to this endpoint and can exploit this vulnerability without chaining any additional flaw.

Key dates

02Disclosure timeline

May 21, 2026 CVE published
June 30, 2026 Record updated

Related vulnerabilities

04Related CVE