Description

BerriAI/litellm is vulnerable to Server-Side Template Injection (SSTI) via the `/completions` endpoint. The vulnerability arises from the `hf_chat_template` method processing the `chat_template` parameter from the `tokenizer_config.json` file through the Jinja template engine without proper sanitization. Attackers can exploit this by crafting malicious `tokenizer_config.json` files that execute arbitrary code on the server.

INFO

Published Date :

2024-04-10T17:07:52.935Z

Last Modified :

2024-08-01T19:32:42.587Z

Source :

@huntr_ai
AFFECTED PRODUCTS

The following products are affected by CVE-2024-2952 vulnerability.

Vendors Products
Berriai
  • Litellm
Litellm
  • Litellm
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-2952.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact