Description
BerriAI/litellm is vulnerable to Server-Side Template Injection (SSTI) via the `/completions` endpoint. The vulnerability arises from the `hf_chat_template` method processing the `chat_template` parameter from the `tokenizer_config.json` file through the Jinja template engine without proper sanitization. Attackers can exploit this by crafting malicious `tokenizer_config.json` files that execute arbitrary code on the server.
INFO
Published Date :
2024-04-10T17:07:52.935Z
Last Modified :
2024-08-01T19:32:42.587Z
Source :
@huntr_ai
AFFECTED PRODUCTS
The following products are affected by CVE-2024-2952 vulnerability.
| Vendors | Products |
|---|---|
| Berriai |
|
| Litellm |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2024-2952.
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact