THE U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-42271 and CVE-2026-50751. The first, a command injection vulnerability in BerriAI LiteLLM, allows remote code execution due to improper access controls, affecting versions 1.74.2 through 1.83.6.
The second, a critical authentication bypass vulnerability in Check Point Security Gateway, allows attackers to establish VPN connections without valid credentials, exploiting the deprecated IKEv1 key exchange process. The Check Point vulnerability is actively being exploited, prompting CISA to mandate federal agencies to address these issues by June 11 and June 22, 2026, respectively.