CVE-2026-42208CRITICAL 9.8CISA KEVEPSS p99.8%

CVE-2026-42208BerriAI LiteLLM SQL Injection Vulnerability

BerriAI / LiteLLM

Description

BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorized access to the proxy and the credentials it manages.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS93.11% probability of exploitation · percentile 99.8% · 2026-06-17T12:03:21Z
Published2026-05-08
Last modified2026-05-08

CISA KEV entry

Added to KEV: 2026-05-08

Underlying weaknesses· 1

CWE-89

References

  1. https://github.com/BerriAI/litellm/releases/tag/v1.83.7-stable
  2. https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc
  3. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-42208

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection')cwe-890%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryBerriAI LiteLLM SQL Injection Vulnerabilitykev-cve-2026-422080%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-0628
CVE
CVE-2026-42203
CVE
CVE-2026-22730
CVE
CVE-2025-1793
CVE
CVE-2026-47101
CVE
CVE-2026-47102
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.