Forwarded Taiwan Computer Network Emergency Response Team / Coordination Center Information Security Alert TWCERTCC-200-202606-00000011

[Description]
1.【CVE-2026-42271】BerriAI LiteLLM Command Injection Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 BerriAI LiteLLM contains a command injection vulnerability, which may allow any authenticated user (including those with only low-privilege internal user keys) to execute arbitrary commands on the host.
【Affected platforms】Please refer to the official listed affected versions
https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g

2.【CVE-2026-50751】Check Point Security Gateway Improper Authentication Vulnerability (CVSS v3.1: 9.3)
【Whether exploited by ransomware: Known】 Check Point Security Gateway contains an improper authentication vulnerability in the IKEv1 key exchange mechanism, which may allow an unauthenticated remote attacker to bypass authentication mechanisms and establish a remote access VPN connection without possessing valid user credentials.
【Affected platforms】Please refer to the official listed affected versions
https://support.checkpoint.com/results/sk/sk185033

3.【CVE-2026-11645】Google Chromium V8 Out-of-Bounds Read and Write Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 Google Chromium V8 contains an out-of-bounds read and write vulnerability. A remote attacker may execute arbitrary code within the sandbox via a specially crafted HTML page. This vulnerability may affect multiple web browsers using the Chromium engine, including but not limited to Google Chrome, Microsoft Edge, and Opera.
【Affected platforms】Please refer to the official listed affected versions
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html

4.【CVE-2026-7473】Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability (CVSS v3.1: 5.8)
【Whether exploited by ransomware: Unknown】 Arista Extensible Operating System contains an Incomplete Comparison with Missing Factors vulnerability. When the switch receives an unexpected tunneled packet whose destination IP address matches its configured decapsulation IP, it may incorrectly perform decapsulation and forward it, resulting in unintended traffic handling behavior.
【Affected platforms】Please refer to the official listed affected versions
https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137

5.【CVE-2026-20245】Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability (CVSS v3.1: 7.8)
【Whether exploited by ransomware: Unknown】 Cisco Catalyst SD-WAN Manager contains an Improper Encoding or Escaping of Output vulnerability. This vulnerability may allow an authenticated local attacker to execute arbitrary commands with root privileges by providing a specially crafted file to the affected system.
【Affected platforms】Please refer to the official listed affected versions
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx

6.【CVE-2026-10520】Ivanti Sentry OS Command Injection Vulnerability (CVSS v3.1: 10.0)
【Whether exploited by ransomware: Unknown】 Ivanti Sentry contains an operating system command injection vulnerability, which may allow an unauthenticated remote user to execute remote code with root privileges. When the Sentry device is in an unmanaged state and its endpoints are accessible from external networks, an attacker can successfully exploit this vulnerability. If used with EPMM with mTLS enabled, or if HTTPS access is restricted via Neurons for MDM, external attackers will be unable to access the relevant interfaces.
【Affected platforms】Please refer to the official listed affected versions
https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523

7.【CVE-2026-35273】Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability (CVSS v3.1: 9.8)
【Whether exploited by ransomware: Known】 Oracle PeopleSoft Enterprise PeopleTools contains a missing authentication vulnerability for critical functions. An unauthenticated attacker may exploit this vulnerability to gain control of PeopleSoft Enterprise PeopleTools.
【Affected platforms】Please refer to the official listed affected versions https://www.oracle.com/security-alerts/alert-cve-2026-35273.html

[Affected Platforms]
Detailed information is provided in the affected platforms section within the description

[Recommendations]
1.【CVE-2026-42271】 The official has released a fix update for the vulnerability, please update to the relevant version
https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g

2.【CVE-2026-50751】 The official has released a fix update for the vulnerability, please update to the relevant version
https://support.checkpoint.com/results/sk/sk185033

3.【CVE-2026-11645】 The official has released a fix update for the vulnerability, please update to the relevant version
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html

4.【CVE-2026-7473】 The official has released a fix update for the vulnerability, please update to the relevant version
https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137

5.【CVE-2026-20245】 The official has released a fix update for the vulnerability, please update to the relevant version
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx

6.【CVE-2026-10520】 The official has released a fix update for the vulnerability, please update to the relevant version
https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523

7.【CVE-2026-35273】 The official has released a fix update for the vulnerability, please update to the relevant version
https://www.oracle.com/security-alerts/alert-cve-2026-35273.html