Arbitrary Command Execution Vulnerability in LiteLLM Proxy Server by BerriAI
CVE-2026-42271
Key Information:
Badges
What is CVE-2026-42271?
false
CISA has reported CVE-2026-42271
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2026-42271 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
litellm >= 1.74.2, < 1.83.7
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
News Articles
Copilot, LiteLLM and the AI trust boundary gap
SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a CVE, a verify command, and a fix.
2 weeks ago
CISA Warning: LiteLLM Flaw Could Expose Enterprise AI Gateways
CISA’s LiteLLM warning shows why AI gateways and agents need service account governance, scoped access, credential rotation, and audit trails.
3 weeks ago
LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271) - Help Net Security
A command injection vulnerability (CVE-2026-42271) in BerryAI’s LiteLLM open-source AI gateway is being exploited by attackers.
3 weeks ago
References
EPSS Score
80% chance of being exploited in the next 30 days.
CVSS V4
Timeline
- 📈
Vulnerability started trending
- 🟡
Public PoC available
- 📰
First article discovered by Newsbreak
- 👾
Exploit known to exist
- 🦅
CISA Reported
Vulnerability published
Vulnerability Reserved
