Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-12774: Server-Side Request Forgery in BerriAI litellmCVE-2026-12774 0 CVE-2026-12774 is a medium severity server-side request forgery (SSRF) vulnerability in BerriAI litellm affecting versions 1.82.0, 1.82.1, and 1.82.2. The vulnerability exists in the _execute_with_mcp_client function within the MCP Server Connection Testing component. It allows remote attackers to manipulate server requests, potentially causing the server to make unintended requests. The vulnerability has been publicly disclosed, but no official patch or remediation guidance has been provided by the vendor yet. Join the discussion | CVE Database V5 | 06/21/2026, 03:45:06 UTC Added: 06/21/2026, 03:52:49 UTC |
CVE-2026-12773: Improper Authentication in BerriAI litellmCVE-2026-12773 0 CVE-2026-12773 is a medium severity vulnerability in BerriAI litellm up to version 1.59.8. It affects the UserAPIKeyAuth function in the MCP Proxy component, allowing improper authentication due to a weakness in the authentication mechanism. The vulnerability can be exploited remotely without privileges or user interaction. Public exploit code is available. No official patch or remediation guidance has been provided by the vendor yet. Join the discussion | CVE Database V5 | 06/21/2026, 03:15:08 UTC Added: 06/21/2026, 03:52:49 UTC |
CVE-2026-12772: Session Expiration in BerriAI litellmCVE-2026-12772 0 A session expiration vulnerability exists in BerriAI litellm versions 1.82.0, 1.82.1, and 1.82.2. The flaw affects the authenticate_user function in the PROXY_ADMIN database API Key Generator component, allowing remote attackers to manipulate sessions. The vulnerability has a medium severity rating with a CVSS score of 5.3. Exploit code has been publicly released. No official patch or remediation guidance is currently confirmed from the vendor. Join the discussion | CVE Database V5 | 06/21/2026, 02:00:08 UTC Added: 06/21/2026, 02:39:06 UTC |
CVE-2026-12771: Improper Authorization in BerriAI litellmCVE-2026-12771 0 CVE-2026-12771 is an improper authorization vulnerability in BerriAI litellm affecting versions 1.82.0, 1.82.1, and 1.82.2. It involves a flaw in the M2M JWT Handler component, specifically in the file litellm/proxy/auth/user_api_key_auth.py. The vulnerability can be exploited remotely but requires high attack complexity and is difficult to exploit. No official patch or remediation is currently confirmed by the vendor. The CVSS 4.0 score rates this issue as low severity. Join the discussion | CVE Database V5 | 06/21/2026, 01:00:12 UTC Added: 06/21/2026, 01:52:49 UTC |
CVE-2026-12770: Improper Authorization in BerriAI litellmCVE-2026-12770 0 A vulnerability was determined in BerriAI litellm up to 1.63.1. The impacted element is an unknown function of the file litellm/proxy/management_endpoints/key_management_endpoints.py of the component Admin Key Handler. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 23781. It is recommended to apply a patch to fix this issue. The vendor was contacted early about this disclosure. Join the discussion | CVE Database V5 | 06/21/2026, 00:15:08 UTC Added: 06/21/2026, 00:39:05 UTC |
Showing 1 to 5 of 5 results