{}

{}

{}

{"bugzilla": {"description": "LiteLLM: LiteLLM: Unauthorized data access and modification via SQL injection", "id": "2463965", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463965"}, "csaw": false, "cvss3": {"cvss3_base_score": "9.8", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-89", "details": ["A flaw was found in LiteLLM. A database query used for proxy API key checks incorrectly incorporated caller-supplied key values directly into the query. This vulnerability allows an unauthenticated attacker to send a specially crafted Authorization header to any Large Language Model (LLM) API route, exploiting the proxy's error-handling path. Successful exploitation could enable the attacker to read and potentially modify data within the proxy's database, leading to unauthorized access to the proxy and its managed credentials."], "name": "CVE-2026-42208", "package_state": [{"cpe": "cpe:/a:redhat:lightspeed_core", "fix_state": "Not affected", "package_name": "lightspeed-core/lightspeed-stack-rhel9", "product_name": "Lightspeed Core"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Not affected", "package_name": "ansible-automation-platform-26/lightspeed-chatbot-rhel9", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Not affected", "package_name": "rhoai/odh-llama-stack-core-rhel9", "product_name": "Red Hat OpenShift AI (RHOAI)"}, {"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Not affected", "package_name": "rhoai/odh-mlflow-rhel9", "product_name": "Red Hat OpenShift AI (RHOAI)"}], "public_date": "2026-04-28T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-42208\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-42208\nhttps://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc"], "statement": "This Critical SQL injection vulnerability in LiteLLM's proxy API key verification allows unauthenticated attackers to read and modify database data, leading to unauthorized access and credential compromise. However, Red Hat products are not affected as the vulnerable versions are not in use.", "threat_severity": "Critical"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "litellm", "vendor": "berriai"}], "created": "2026-04-30T04:45:06.102195+00:00", "updated": "2026-04-30T04:45:06.102270+00:00", "vendors": ["berriai", "berriai$PRODUCT$litellm"]}