The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-42271 (CVSS score: 8.7), is a command...

#Sicherheitslücke #AI

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

VERWANDTEARTIKEL

CVE-2026-11572 - degit Command Injection

CVE-2026-41539 - QTS, QuTS hero

CVE-2026-5067 - Out-of-bounds read/write in HTTP WebSocket upgrade via non-null-terminated Sec-WebSocket-Key

Google Patches 5th Chrome Zero-Day Exploited in 2026

CVE-2026-9662 - Recover Exit For WooCommerce <= 1.0.3 - Unauthenticated Local File Inclusion via 'tpf' Parameter

Langflow und Apex One: Aktive Exploits, neu im KEV-Katalog