{"uuid": "8c7387c4-bf2e-42cf-aae4-8e0c1788aeb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://t.me/thehackernews/9184", "content": "\ud83d\udea8 Hackers are already exploiting a flaw in LiteLLM, a widely used open-source AI gateway.\n\nOne bug (CVE-2026-42271) lets any logged-in user run commands on the server. Chain it with a second bug, and attackers get in with no login at all.\n\nAt risk: API keys, stored secrets, and everything connected to it.\n\n\ud83d\udd17 Details: https://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html", "creation_timestamp": "2026-07-15T12:00:05.156067Z"}