LiteLLM Security Update Advisory (CVE-2026-42208)
- CVE-2026-42208, a SQL injection (an attack that injects malicious commands into a database query) vulnerability, has been confirmed in LiteLLM.
- affected Versions are LiteLLM 1.81.16 and above and 1.83.7 and below.
- the vulnerability has been patched via a security patch, which requires an update to LiteLLM 1.83.7 or later.
- it is recommended that you follow the instructions on the reference site to apply the latest version of the Vulnerability Patch.