LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.10-stable, LiteLLM's /health/testconnection endpoint resolved request-supplied environment and OIDC file references in litellmparams, allowing a proxy administrator or another privileged caller with permission to test model connections to read files from the local filesystem via an oidc/file/ reference. This issue is fixed in version 1.83.10-stable.
{
"cwe_ids": [
"CWE-73"
],
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/59xxx/CVE-2026-59819.json",
"cna_assigner": "GitHub_M"
}{
"cpe": [
"cpe:2.3:a:litellm:litellm:*:*:*:*:*:*:*:*",
"cpe:2.3:a:litellm:litellm:1.83.10:nightly:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "1.83.10"
},
{
"introduced": "1.83.10-nightly"
},
{
"last_affected": "1.83.10-nightly"
}
],
"source": [
"CPE_RANGE",
"CPE_STRING",
"REFERENCES"
]
}