{"vulnerability": "cve-2026-1277", "sightings": [{"uuid": "fa0c001b-3cc4-4f8e-830d-f76f5568fae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1277", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-1277.yaml", "content": "", "creation_timestamp": "2026-03-16T18:31:57.000000Z"}, {"uuid": "2eb807b7-92f0-44a1-b2b6-82ae6c6400b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1277", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mhbuolj5kc2h", "content": "", "creation_timestamp": "2026-03-17T21:03:02.875724Z"}, {"uuid": "1d4fee66-5260-4eb7-ad38-49c41eb993f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1277", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mimmlgwf222p", "content": "", "creation_timestamp": "2026-04-03T21:02:44.733557Z"}, {"uuid": "461959f7-7ce8-48f1-be55-e94692deb853", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12773", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morwwdq7fl2v", "content": "CVE-2026-12773 - BerriAI litellm MCP Proxy user_api_key_auth_mcp.py UserAPIKeyAuth improper authentication\nCVE ID : CVE-2026-12773\n \n Published : June 21, 2026, 3:15 a.m. | 4\u00a0hours, 22\u00a0minutes ago\n \n Description : A weakness has been identified in BerriAI litellm up to 1.59.8....", "creation_timestamp": "2026-06-21T08:22:18.936643Z"}, {"uuid": "8f207991-22a4-4b7e-bc7b-a24482475cab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12772", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morhpal4a42n", "content": "CVE-2026-12772 - BerriAI litellm PROXY_ADMIN database API Key Generator login_utils.py authenticate_user session expiration\nCVE ID : CVE-2026-12772\n \n Published : June 21, 2026, 2 a.m. | 1\u00a0hour, 43\u00a0minutes ago\n \n Description : A security flaw has been discovered in BerriAI lit...", "creation_timestamp": "2026-06-21T03:50:43.723600Z"}, {"uuid": "5827702e-0eee-44aa-96a9-df0c71c6d86f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12771", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morhy6ygjl2f", "content": "CVE-2026-12771 - BerriAI litellm M2M JWT user_api_key_auth.py improper authorization\nCVE ID : CVE-2026-12771\n \n Published : June 21, 2026, 1 a.m. | 2\u00a0hours, 43\u00a0minutes ago\n \n Description : A vulnerability was identified in BerriAI litellm up to 1.82.2. This affects an unknown ...", "creation_timestamp": "2026-06-21T03:54:42.319387Z"}, {"uuid": "9c8f59ba-42e6-4019-bc63-ccbc80755a09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12770", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morib5g34w2r", "content": "CVE-2026-12770 - BerriAI litellm Admin Key key_management_endpoints.py improper authorization\nCVE ID : CVE-2026-12770\n \n Published : June 21, 2026, 12:15 a.m. | 3\u00a0hours, 28\u00a0minutes ago\n \n Description : A vulnerability was determined in BerriAI litellm up to 1.63.1. The impacte...", "creation_timestamp": "2026-06-21T03:59:42.586484Z"}, {"uuid": "c7eeb1c4-97bf-423d-b736-36caf5592d8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12774", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3morjy2zbp42u", "content": "BerriAI litellm v1.82.0 \u2013 1.82.2 has a MEDIUM severity SSRF vulnerability. No patch yet \u2014 monitor vendor channels for updates. Review server exposure now. https://radar.offseq.com/threat/cve-2026-12774-server-side-request-forgery-in-berr-96b3ed54597a7e96 #OffSeq #Security #Vulnerability", "creation_timestamp": "2026-06-21T04:30:25.856354Z"}, {"uuid": "d37ad657-1099-4938-be29-21e9aa5704df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12774", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116786215216470891", "content": "CVE-2026-12774: SSRF in BerriAI litellm v1.82.0 \u2013 1.82.2 (MEDIUM, CVSS 5.3). Remote attackers can manipulate server requests via _execute_with_mcp_client. No patch yet \u2014 monitor vendor advisories. https://radar.offseq.com/threat/cve-2026-12774-server-side-request-forgery-in-berr-96b3ed54597a7e96 #OffSeq #Infosec #SSRF #Vuln", "creation_timestamp": "2026-06-21T04:30:27.861439Z"}, {"uuid": "381e716b-cbcc-4e71-b57c-dbad9a5cfb40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12774", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morxiaohg52u", "content": "CVE-2026-12774 - BerriAI litellm MCP Server Connection Testing rest_endpoints.py _execute_with_mcp_client server-side request forgery\nCVE ID : CVE-2026-12774\n \n Published : June 21, 2026, 3:45 a.m. | 3\u00a0hours, 52\u00a0minutes ago\n \n Description : A security vulnerability has been de...", "creation_timestamp": "2026-06-21T08:34:07.251939Z"}, {"uuid": "a8a68d81-a260-4254-be8c-248a49afa780", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12775", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morvtpo46w2r", "content": "CVE-2026-12775 - Montodel House-Rental-Management login.php sql injection\nCVE ID : CVE-2026-12775\n \n Published : June 21, 2026, 4 a.m. | 3\u00a0hours, 37\u00a0minutes ago\n \n Description : A vulnerability was detected in Montodel House-Rental-Management up to 90010017b81265eb1ef381026890...", "creation_timestamp": "2026-06-21T08:02:44.446792Z"}, {"uuid": "df184bf0-02b6-4e28-a030-9e42b583c90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12778", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3morwedwvx32x", "content": "CVE-2026-12778 - AOMEI Partition Assistant Kernel Driver ampa10.sys access control\nCVE ID : CVE-2026-12778\n \n Published : June 21, 2026, 5 a.m. | 2\u00a0hours, 37\u00a0minutes ago\n \n Description : A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerabil...", "creation_timestamp": "2026-06-21T08:12:05.450149Z"}, {"uuid": "c279de1b-054b-4c2f-8f58-a9acddaf8ead", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12779", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mosi5rjyhv2m", "content": "AOMEI Dynamic Disk Manager up to 10.10.1 hit by HIGH severity (#CVE-2026-12779): improper access controls in kernel driver. Public exploit, no patch. Restrict local access and monitor for updates. https://radar.offseq.com/threat/cve-2026-12779-improper-access-controls-in-aomei-d-5bbdcb6786a305ad ...", "creation_timestamp": "2026-06-21T13:30:29.776431Z"}, {"uuid": "113dc877-67ef-4562-bdbb-dae59fa656ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12779", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116788338824907237", "content": "AOMEI Dynamic Disk Manager \u226410.10.1: CVE-2026-12779 (HIGH, CVSS 8.5) allows local privilege abuse via improper access controls in ddmdrv.sys. Exploit is public, no patch available. Restrict access & monitor systems. https://radar.offseq.com/threat/cve-2026-12779-improper-access-controls-in-aomei-d-5bbdcb6786a305ad #OffSeq #CVE202612779 #vuln #cybersecurity", "creation_timestamp": "2026-06-21T13:30:39.236320Z"}, {"uuid": "4d9e3024-5bdb-45a8-a48a-8d60716516f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12775", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116790952739214741", "content": "It is possible to see elevated activities targeting Montodel House-Rental-Management (CVE-2026-12775) https://vuldb.com/vuln/372517/cti", "creation_timestamp": "2026-06-22T00:35:16.643576Z"}, {"uuid": "5a752f0b-d19c-4b12-b03b-a04ae231aca3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12778", "type": "seen", "source": "https://www.acn.gov.it/portale/w/aomei-disponibili-poc-pubblici-per-le-cve-2026-12778-cve-2026-12779-e-cve-2026-12780", "content": "Disponibili Proof of Concept (PoC) per 3 vulnerabilit\u00e0 con gravit\u00e0 \u201calta\u201d presenti nei prodotti Backupper, Partition Assistant Standard e Dynamic Disk Manager della suite AOMEI. Tali vulnerabilit\u00e0 risiedono nei relativi driver del kernel e potrebbero consentire l\u2019alterazione dei dati e l\u2019elevazione dei privilegi utente fino a livello SYSTEM da parte di un attaccante locale.", "creation_timestamp": "2026-06-22T12:39:57.000000Z"}, {"uuid": "aece00de-6529-475f-9b82-9a08f364dea7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12779", "type": "seen", "source": "https://www.acn.gov.it/portale/w/aomei-disponibili-poc-pubblici-per-le-cve-2026-12778-cve-2026-12779-e-cve-2026-12780", "content": "Disponibili Proof of Concept (PoC) per 3 vulnerabilit\u00e0 con gravit\u00e0 \u201calta\u201d presenti nei prodotti Backupper, Partition Assistant Standard e Dynamic Disk Manager della suite AOMEI. Tali vulnerabilit\u00e0 risiedono nei relativi driver del kernel e potrebbero consentire l\u2019alterazione dei dati e l\u2019elevazione dei privilegi utente fino a livello SYSTEM da parte di un attaccante locale.", "creation_timestamp": "2026-06-22T12:39:57.000000Z"}, {"uuid": "5c5b13b3-842c-4d7c-89a8-6a403e17b3f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12774", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3moy4qdky5q2g", "content": "cve-2026-12774 appears to be SSRF in BerriAI litellm rest_endpoints.py _execute_with_mcp_client when attacker-controlled URLs are accepted; block metadata and link-local ranges like 169.254.169.254, enforce a strict host allowlist and validate URL schemes.", "creation_timestamp": "2026-06-23T19:22:05.595333Z"}]}