Ethical Hacking News
U.S. CISA adds two new vulnerabilities, CVE-2026-42271 and CVE-2026-50751, to its Known Exploited Vulnerabilities (KEV) catalog, highlighting the importance of staying informed on the latest security threats and patches. Follow us for more news on cybersecurity threats and solutions.
CISA has added two new vulnerabilities, CVE-2026-42271 and CVE-2026-50751, to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2026-42271 is a privilege escalation and remote code execution vulnerability in LiteLLM. CVE-2026-50751 is a critical authentication bypass flaw in Check Point Security Gateway, allowing unauthenticated attackers to establish remote VPN connections. Fixed versions for these vulnerabilities are available: LiteLLM version 1.83.7 and Check Point Security Gateway. Federal agencies must fix the Check Point Security Gateway vulnerability by June 11, 2026, and BerriAI LiteLLM by June 22, 2026.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added two new vulnerabilities, CVE-2026-42271 and CVE-2026-50751, to its Known Exploited Vulnerabilities (KEV) catalog. The first vulnerability, tracked as CVE-2026-42271, is a privilege escalation and remote code execution vulnerability in LiteLLM, affecting versions 1.74.2 through 1.83.6. The second vulnerability, tracked as CVE-2026-50751, is a critical authentication bypass flaw in Check Point Security Gateway, allowing unauthenticated attackers to establish remote VPN connections without needing valid credentials.
According to CISA, the CVE-2026-42271 flaw stems from two MCP server testing endpoints that allowed authenticated users to supply custom server configurations, including commands and environment variables. Because the application executed these commands as subprocesses on the host system without enforcing role-based access controls, even low-privileged users with a valid API key could run arbitrary commands on the server. The vulnerability was fixed in LiteLLM version 1.83.7.
The second flaw added to the catalog, tracked as CVE-2026-50751, is being actively exploited by attackers. Check Point warns that this vulnerability affects the deprecated IKEv1 key exchange process and allows unauthenticated attackers to establish remote VPN connections without needing valid credentials. Attacks have been observed since May 2026, with activity increasing in early June. The campaign appears limited, affecting several dozen organizations, and at least one incident has been linked, with medium confidence, to a Qilin ransomware affiliate.
Experts recommend that private organizations review the catalog and address the vulnerabilities in their infrastructure. FCEB agencies are required by law to fix these flaws by specific due dates: CISA orders federal agencies to fix the Check Point Security Gateway vulnerability by June 11, 2026, and the BerriAI LiteLLM flaw by June 22, 2026.
This is just another example of the constant evolving threat landscape in the world of cybersecurity. In recent months, we've seen numerous high-profile breaches and vulnerabilities being disclosed. It highlights the importance of staying informed and up-to-date on the latest security threats and patches.
The U.S. CISA cataloging of these two new flaws serves as a reminder for organizations to be vigilant and proactive in their security measures. By keeping their systems and software up to date, they can help prevent exploitation by malicious actors.
In conclusion, it's essential for organizations to take immediate action to address the vulnerabilities in BerriAI LiteLLM and Check Point Security Gateway. By doing so, they can protect themselves from potential attacks and maintain the integrity of their systems.
Related Information:
https://www.ethicalhackingnews.com/articles/The-US-CISA-Catalogs-Flaws-in-BerriAI-LiteLLM-and-Check-Point-Security-Gateway-A-Call-to-Action-for-Federal-Agencies-ehn.shtml
https://securityaffairs.com/193343/security/u-s-cisa-adds-berriai-litellm-and-check-point-security-gateway-flaws-to-its-known-exploited-vulnerabilities-catalog.html
https://nvd.nist.gov/vuln/detail/CVE-2026-42271
https://www.cvedetails.com/cve/CVE-2026-42271/
https://nvd.nist.gov/vuln/detail/CVE-2026-50751
https://www.cvedetails.com/cve/CVE-2026-50751/
Published: Wed Jun 10 18:36:26 2026 by llama3.2 3B Q4_K_M
