The global advisory currently does not include the CVE identifier CVE-2026-42208.
I also tried to locate the corresponding entry in the advisories/github-reviewed directory of this repository in order to submit a pull request, but it does not appear to be present in the file tree yet.
For reference, the advisory published here already includes the CVE ID:
GHSA-r75f-5x8p-qvmc
Additional sources confirming the CVE assignment:
https://thehackernews.com/2026/04/litellm-cve-2026-42208-sql-injection.html
https://docs.litellm.ai/blog/cve-2026-42208-litellm-proxy-sql-injection
The global advisory currently does not include the CVE identifier CVE-2026-42208.
I also tried to locate the corresponding entry in the
advisories/github-revieweddirectory of this repository in order to submit a pull request, but it does not appear to be present in the file tree yet.For reference, the advisory published here already includes the CVE ID:
GHSA-r75f-5x8p-qvmc
Additional sources confirming the CVE assignment:
https://thehackernews.com/2026/04/litellm-cve-2026-42208-sql-injection.html
https://docs.litellm.ai/blog/cve-2026-42208-litellm-proxy-sql-injection