CVE Spotlight: CVE-2026-42271 LiteLLM Exploited via RCE

Описание: BerriAI LiteLLM contains a critical command injection vulnerability tracked as CVE-2026-42271. This flaw allows authenticated users, including those with low-privilege internal-user keys, to run arbitrary commands on the host. The issue affects versions from 1.74.2 up to before 1.83.7. CISA has added this to the Known Exploited Vulnerabilities catalog on June 8, 2026, with a federal remediation deadline of June 22, 2026.

The vulnerability stems from two endpoints used to preview an MCP server: POST /mcp-rest/test/connection and POST /mcp-rest/test/tools/list. These endpoints accepted a full server configuration including command fields without proper validation. When called with a stdio configuration, the service spawned the supplied command as a subprocess on the proxy host.

Fix: Upgrade LiteLLM to version 1.83.7 or later: pip install --upgrade litellm==1.83.7

Restrict access to MCP stdio test endpoints at the network layer. Rotate API keys and credentials on the LiteLLM host after patching.

References

NVD: https://nvd.nist.gov/vuln/detail/CVE-...
GitHub Advisory: https://github.com/advisories/GHSA-v4...

#CVE, #RCE, #CommandInjection, #BerriAI, #LiteLLM, #CISA #KEV, #HIGH

Stack Sentinel 7 — CVE briefings for defenders. Subscribe for KEV alerts.