BerriAI LiteLLM Command Injection (CVE-2026-42271): Authenticated Users Can Execute Arbitrary Host Commands, Added to CISA KEV
A command injection vulnerability in BerriAI LiteLLM, tracked as CVE-2026-42271, allows any authenticated user — including holders of low-privilege internal-user API keys — to execute … Read More