CVE-2026-42271: BerriAI LiteLLM Command Injection Vulnerability
Summary
BerriAI LiteLLM has a command injection vulnerability that allows authenticated users to execute arbitrary commands on the host. This could enable attackers to compromise the system, especially if they hold low-privilege keys.
IFF Assessment
A command injection vulnerability allows attackers to execute arbitrary code on a system, which is a severe security risk and bad news for defenders.
Severity
This vulnerability allows authenticated users to run arbitrary commands, suggesting a high attack vector (Network or Adjacent) and significant impact on confidentiality, integrity, and availability. The ease of exploitation for an authenticated user points to a high exploitability score.
CISA KEV: Listed as actively exploited. Federal patch due: June 22, 2026. Known ransomware use: Unknown.
Defender Context
This vulnerability in BerriAI LiteLLM presents a clear risk to organizations using the product. Defenders should prioritize applying vendor-provided mitigations or discontinuing use if no fixes are available. The ability for even low-privilege users to execute commands is a critical indicator of a potential lateral movement or privilege escalation vector.