A critical alert has been issued regarding two active vulnerabilities: CVE-2026-42271, a command injection vulnerability in BerriAI LiteLLM, and CVE-2026-50751, which concerns unauthorized access issues in Check Point Security Gateways. Additionally, TP-Link has released a security update addressing a command injection vulnerability in the Archer MR600 router (CVE-2026-8913).
This flaw allows authenticated users to execute arbitrary commands due to improper filtering of user input in the router's web management interface. TP-Link emphasizes the urgency of installing firmware updates to mitigate risks from these vulnerabilities and recommends specific versions for users in different regions.