CVE-2026-12796

MEDIUM 6.3

BerriAI litellm SSO Authentication Flow ui_sso.py get_redirect_response_from_openid session expiration

CVSS Score

6.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability was identified in BerriAI litellm up to 1.82.2. This impacts the function get_redirect_response_from_openid of the file litellm/proxy/management_endpoints/ui_sso.py of the component SSO Authentication Flow. The manipulation leads to session expiration. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure.

CWE	CWE-613
Vendor	berriai
Product	litellm
Published	Jun 21, 2026

Stay Ahead of the Next One

Get instant alerts for berriai litellm

Be the first to know when new medium vulnerabilities affecting berriai litellm are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

BerriAI / litellm

1.82.0 1.82.1 1.82.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/372558 vuldb.com: https://vuldb.com/vuln/372558/cti vuldb.com: https://vuldb.com/cve/CVE-2026-12796 vuldb.com: https://vuldb.com/submit/811287 gist.github.com: https://gist.github.com/YLChen-007/5fa8af12e1b183674d7ca96d852fb697

Credits

🔍 Eric-c (VulDB User) VulDB CNA Team