THREATOPS
THREAT OPSCVEs › CVE-2026-42208

CVE-2026-42208 — BerriAI LiteLLM SQL Injection Vulnerability

CISA KEVExploited: confirmedBerriAI

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorised access to the proxy and the credentials it manages.

Vulnerability details

Related reporting