๐Ÿ” CVE Alert

CVE-2026-59822

UNKNOWN 0.0

LiteLLM: MCP Authentication Bypass via OAuth2 Passthrough Fallback

CVSS Score
0.0
EPSS Score
0.3%
EPSS Percentile
20th

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, LiteLLM's MCP Streamable HTTP endpoint allowed an unauthenticated attacker to use a fabricated Authorization header to trigger an OAuth2 passthrough fallback path that replaced failed LiteLLM key validation with an empty UserAPIKeyAuth() object, allowing requests to reach MCP tooling without a valid LiteLLM key. This issue is fixed in version 1.84.0.

CWE CWE-287 CWE-306
Vendor berriai
Product litellm
Published Jul 8, 2026
Last Updated Jul 9, 2026
Stay Ahead of the Next One

Get instant alerts for berriai litellm

Be the first to know when new unknown vulnerabilities affecting berriai litellm are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

BerriAI / litellm
< 1.84.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/BerriAI/litellm/security/advisories/GHSA-7488-6r32-c95q github.com: https://github.com/BerriAI/litellm/pull/26463 github.com: https://github.com/BerriAI/litellm/commit/73869f0faf7d11ee21adcb5f91b8c33a340b6c2c github.com: https://github.com/BerriAI/litellm/releases/tag/v1.84.0