LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now
A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell on the gateway server. A separate RCE is already in CISA’s KEV. Here’s what to check and how to patch.