CVE-2026-42208: BerriAI LiteLLM SQL Injection Vulnerability. BerriAI

BerriAI LiteLLM SQL Injection Vulnerability. BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorized access to the proxy and the credentials it manages.

• CISA KEV-listed (remediation due 2026-05-11)
• EPSS 62.6% (98.4% percentile)

Browse the CVE database

Read the full analysis on IntelFusions