CyberRota
← Ana sayfaya dön

CVE-2026-12770

MEDIUM · CVSS 5.4 EPSS %0.34 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-21T01:16:22.847 · Çekilme zamanı: 2026-06-30T18:28:42.084973+00:00

CyberRota Yorumu

Uzaktan istismar edilebilir olabilir.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

Tespit Edilen Sinyaller
exploit
GitHub PoC Linkleri
gist.github.com github.com github.com

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-12770
Severity
MEDIUM
CVSS
5.4
EPSS
%0.34

Orijinal NVD Açıklaması

A vulnerability was determined in BerriAI litellm up to 1.63.1. The impacted element is an unknown function of the file litellm/proxy/management_endpoints/key_management_endpoints.py of the component Admin Key Handler. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 23781. It is recommended to apply a patch to fix this issue. The vendor was contacted early about this disclosure.