ON June 8, 2026, CISA added two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: CVE-2026-42271, a command execution bug in BerriAI LiteLLM, and CVE-2026-50751, an authentication bypass in Check Point VPN. CVE-2026-42271 allows command execution on the LiteLLM proxy host via misconfigured API endpoints, affecting versions from 1.74.2 to 1.83.6. Organizations are advised to upgrade to version 1.83.7 or later and ensure proper authorization controls.
CVE-2026-50751 can let unauthenticated attackers access VPN services exploiting IKEv1 configurations. Affected systems should apply vendor hotfixes and strengthen security measures immediately. Both vulnerabilities are actively exploited, emphasizing the urgency for remediation.