https://vulnerability.circl.lu/sightings/feed 2026-06-12T18:53:55.827913+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/2a1194c8-f1a5-4b80-a913-129ad5331daf/export 2026-06-12T18:53:55.846291+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "2a1194c8-f1a5-4b80-a913-129ad5331daf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42271", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3mnvpt2vf4t2m", "content": "\ud83d\udc1b VULNERABILITIES LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE \u2014 The Hacker News\nhttps://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html #InfoSec #CyberSecurity", "creation_timestamp": "2026-06-10T03:00:27.557725Z"} 2026-06-10T03:00:27.557725+00:00 https://vulnerability.circl.lu/sighting/d0556d10-bbf2-4ce0-b44a-bfe79e97c654/export 2026-06-12T18:53:55.846210+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d0556d10-bbf2-4ce0-b44a-bfe79e97c654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mnvqkbrpj22h", "content": "LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evide\u2026\n#hackernews #llm #news", "creation_timestamp": "2026-06-10T03:13:26.802422Z"} 2026-06-10T03:13:26.802422+00:00 https://vulnerability.circl.lu/sighting/27f8e9a5-2e69-4eef-8628-e36a72316851/export 2026-06-12T18:53:55.846128+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "27f8e9a5-2e69-4eef-8628-e36a72316851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/termsofsurrender.bsky.social/post/3mnvr5irfou2b", "content": "LiteLLM Exploit Hits the Wild While Prague Files It Under Later\nPANIC 86% | Lag 20.7h | CVE-2026-42271 is being exploited in the wild and can chain to unauthenticated remote code execution\n#AfterShockIndex\nREAD MORE", "creation_timestamp": "2026-06-10T03:24:11.385794Z"} 2026-06-10T03:24:11.385794+00:00 https://vulnerability.circl.lu/sighting/1b7cfa7f-fdbb-49de-b015-c8b8298372c1/export 2026-06-12T18:53:55.846045+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "1b7cfa7f-fdbb-49de-b015-c8b8298372c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mnvuiwpqkv2b", "content": "LiteLLM Zero-Day Chain Attack: The CVSS 100 AI Gateway Catastrophe +\u00a0Video\n\nIntroduction: A critical command injection vulnerability in the LiteLLM AI gateway (CVE-2026-42271) is actively being exploited in the wild, allowing any authenticated user to run arbitrary commands on the server. The risk\u2026", "creation_timestamp": "2026-06-10T04:24:16.788386Z"} 2026-06-10T04:24:16.788386+00:00 https://vulnerability.circl.lu/sighting/a6ae50ed-29c0-467a-b00c-3d2e9b57e1a0/export 2026-06-12T18:53:55.845964+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a6ae50ed-29c0-467a-b00c-3d2e9b57e1a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42271", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3mnw66u3pnq2u", "content": "CVE watch: LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated...\n\nCheck exposure, dependency, and agent/tool access before panic-patching. Inventory beats vibes.\n\nSource: thehackernews.com\nhttps://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html", "creation_timestamp": "2026-06-10T07:18:08.692671Z"} 2026-06-10T07:18:08.692671+00:00 https://vulnerability.circl.lu/sighting/580b0f04-4a90-4127-beca-adc5071ff036/export 2026-06-12T18:53:55.845875+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "580b0f04-4a90-4127-beca-adc5071ff036", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mnw6x4ijcc2h", "content": "LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271)\n\nA command injection vulnerability (CVE-2026-42271) in BerryAI\u2019s LiteLLM open-source AI gateway is being exploited by attackers, the US Cybersecurity and Infrastructure Security Agency (CISA) confirmed b\u2026\n#hackernews #llm #openai", "creation_timestamp": "2026-06-10T07:31:10.046087Z"} 2026-06-10T07:31:10.046087+00:00 https://vulnerability.circl.lu/sighting/e949d339-b4cb-4942-9f96-c8f4142e8d96/export 2026-06-12T18:53:55.845785+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e949d339-b4cb-4942-9f96-c8f4142e8d96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/ins-aisolutions.bsky.social/post/3mnwfjdxo2j2e", "content": "A reminder this week that the AI stack has single points of failure: CISA flagged an actively exploited LiteLLM flaw (CVE-2026-42271) in its KEV catalog. A respected tool -- and proof any one component can fail. We built LLM Counsel on the opposite instinct: more than one model in the room. #AI #LLM", "creation_timestamp": "2026-06-10T09:28:44.513272Z"} 2026-06-10T09:28:44.513272+00:00 https://vulnerability.circl.lu/sighting/1908e8ab-7f87-409b-a066-a971fd91598f/export 2026-06-12T18:53:55.845690+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "1908e8ab-7f87-409b-a066-a971fd91598f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mnwo7edztm2j", "content": "TSUITE INTEL: Critical vulnerability CVE-2026-42271 hits LiteLLM enterprise routing and n8n pipelines. Active CISA KEV exploitation verified. Deploy this forensic playbook for immediate environment sandboxing and egress security controls. Read at https://thecybermind.co/3jgn", "creation_timestamp": "2026-06-10T12:04:12.902141Z"} 2026-06-10T12:04:12.902141+00:00 https://vulnerability.circl.lu/sighting/f7b5a22a-0366-46ec-a50d-2040032a9d5f/export 2026-06-12T18:53:55.845566+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f7b5a22a-0366-46ec-a50d-2040032a9d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/ins-aisolutions.bsky.social/post/3mnzcx5k6pe2f", "content": "A reminder from this week's news for anyone building on AI infrastructure: a widely used LLM gateway, LiteLLM, is patching an actively exploited remote-code-execution flaw (CVE-2026-42271), now on CISA's known-exploited list. No schadenfreude here -- every team running this layer should patch and", "creation_timestamp": "2026-06-11T13:20:44.869392Z"} 2026-06-11T13:20:44.869392+00:00 https://vulnerability.circl.lu/sighting/d496f796-cb31-40a4-abed-df8ac92b489e/export 2026-06-12T18:53:55.841995+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d496f796-cb31-40a4-abed-df8ac92b489e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42271", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mo24ebkqd42m", "content": "CVE-2026-42271 enables unauthenticated remote code execution in LiteLLM via command injection, requiring rapid federal patching by June 22.\n", "creation_timestamp": "2026-06-11T20:55:29.248179Z"} 2026-06-11T20:55:29.248179+00:00