VYPR
kevPublished May 9, 2026· Updated May 17, 2026· 1 source

CISA Adds BerriAI LiteLLM SQL Injection Flaw to KEV Catalog

CISA has added a critical SQL injection vulnerability in BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) Catalog following evidence of active exploitation.

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical SQL injection vulnerability affecting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) Catalog. The inclusion of CVE-2026-42208 follows confirmed reports that the flaw is currently being leveraged by malicious actors in active cyberattacks CISA.

The vulnerability, identified as CVE-2026-42208, resides within the BerriAI LiteLLM framework. SQL injection vulnerabilities occur when an application fails to properly sanitize user-supplied input before including it in database queries. By exploiting this flaw, an attacker can manipulate the backend database, potentially leading to unauthorized data access, modification, or the execution of arbitrary commands within the application's environment CISA.

CISA’s decision to add this specific vulnerability to the KEV catalog underscores the severity of the threat it poses to the federal enterprise. The KEV catalog is maintained under Binding Operational Directive (BOD) 22-01, which mandates that Federal Civilian Executive Branch (FCEB) agencies take specific actions to remediate vulnerabilities that are known to be actively exploited by threat actors CISA.

While the requirements of BOD 22-01 are legally binding only for FCEB agencies, CISA has issued a strong recommendation for all organizations—regardless of sector—to prioritize the remediation of this vulnerability. The agency emphasizes that integrating the KEV catalog into broader vulnerability management practices is a critical step in reducing the overall attack surface and defending against active, ongoing threats CISA.

The addition of CVE-2026-42208 serves as a reminder of the persistent risk posed by SQL injection flaws in modern software frameworks. As organizations continue to adopt and integrate various AI-related tools like LiteLLM, ensuring that these components are regularly updated and patched remains a vital component of enterprise security. CISA continues to monitor the threat landscape and will update the KEV catalog as new vulnerabilities meet the criteria for active exploitation CISA.

Synthesized by Vypr AI
CISA Adds BerriAI LiteLLM SQL Injection Flaw to KEV Catalog · VYPR