CVE-2026-48710 Starlette Host-Header Auth Bypass (badhost.org)

A critical security vulnerability, CVE-2026-48710, has been identified in the FastAPI and Starlette frameworks, potentially affecting thousands of applications, including popular AI server architectures like vLLM and LiteLLM. This flaw arises from how these frameworks process the HTTP Host header. Attackers can manipulate the Host header to craft requests that bypass path-based authentication middleware, leading to unauthorized access to protected endpoints. This vulnerability highlights a structural weakness in the interaction between ASGI servers, Starlette's URL construction, and middleware assumptions about request safety, making it a significant concern for developers in the AI/ML community. The implications are broad, as many applications built on FastAPI and Starlette that employ request.url in their middleware for authentication are at risk. Affected systems could inadvertently expose model access, API keys, and internal tools, particularly in settings that do not utilize a reverse proxy to sanitize requests. Developers are urged to assess their codebases for vulnerable patterns using provided Semgrep rules and CodeQL queries. The discovery and analysis underscore the complexity of modern software vulnerabilities, necessitating thorough examination across layered systems rather than merely within a single codebase.