CVE-2026-42208TrackedCISA KEV

BerriAI · LiteLLM

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorized access to the proxy and the credentials it manages.

Disclosed

2026-05-08

33 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc
https://nvd.nist.gov/vuln/detail/CVE-2026-42208

↗ NVD ↗ CISA KEV ↗ Search analyses