HIGHVulnerability
Verified
Global

CISA KEV: BerriAI LiteLLM — BerriAI LiteLLM SQL Injection Vulnerability

·Source: CISA KEV

Updated:

Executive Summary

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorised access to the proxy and the credentials it manages.

Analysis

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorised access to the proxy and the credentials it manages. Added to CISA Known Exploited Vulnerabilities catalog on 2026-05-08. Remediation due: 2026-05-11.

Indicators of Compromise (1)

CVE (1)
CVE-2026-42208
NVDMITRE CVE
Source Attribution

Originally published by CISA KEV on May 8, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerabilityNEW

Aon to modernize how brokers access capital and syndicate risk

Aon plc (NYSE: AON), a leading global professional services firm, today announced plans to launch Aon Digital Placement Exchange (Aon DPX), a new digital trading platform designed to modernize how brokers access capital and syndicate risk.

Finextra
CRITICALVulnerabilityNEW

Exploitation of Critical NGINX Vulnerability Begins

The flaw leads to denial-of-service on default configurations and to remote code execution if ASLR is disabled. The post Exploitation of Critical NGINX Vulnerability Begins appeared first on SecurityWeek .

SecurityWeek
LOWVulnerabilityNEWPOC

Exploit available for new DirtyDecrypt Linux root escalation flaw

A recently patched local privilege escalation vulnerability in the Linux kernel's rxgk module now has a proof-of-concept exploit that allows attackers to gain root access on some Linux systems. [...]

BleepingComputer