CVE-2025-11203: 
LiteLLM vulnerability analysis and mitigation

CVE-2025-11203 is a security vulnerability discovered in LiteLLM's health endpoint functionality. The vulnerability was reported on March 25, 2025, and publicly disclosed on October 3, 2025. This flaw affects LiteLM installations and specifically involves the handling of the API_KEY parameter in the health endpoint (Zero Day Initiative, NVD).

The vulnerability is classified with a CVSS v3.0 base score of 3.5 (Low) with the vector string AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N. The specific flaw exists within the handling of the API_KEY parameter provided to the health endpoint. The issue stems from exposing sensitive information to an unauthorized actor. Authentication is required to exploit this vulnerability (Zero Day Initiative).

When exploited, this vulnerability allows attackers to disclose sensitive information on affected installations of LiteLLM. An attacker can leverage this vulnerability to disclose stored credentials, which could potentially lead to further system compromise (Zero Day Initiative).

LiteLLM has released an update to address this vulnerability. Users are advised to upgrade to the patched version available in the v1.63.14-stable release (LiteLLM Release).