CVE-2026-42208 permits SQL injection attacks against BerriAI LiteLLM proxy implementations, enabling unauthorized database access. Threat actors can exfiltrate managed credentials and authentication tokens through crafted queries. The vulnerability was catalogued by CISA KEV, indicating active exploitation patterns have been observed in operational environments.