AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 910 results — Active exploitation

CRITICAL EXPLOIT AVAIL

LangChain GmailToolkit: indirect prompt injection to RCE

Prompt Injection Code Execution Data Extraction Framework Agent Plugin

6 ATLAS

CRITICAL EXPLOIT AVAIL

smolagents: sandbox escape enables unauthenticated RCE

Code Execution Supply Chain Data Leakage Framework Agent

smolagents CWE-94 86 5 ATLAS

HIGH EXPLOIT AVAIL

skops: RCE via MethodNode unsafe deserialization

CVE-2025-54413

EPSS 0.0%

9mo ago

Code Execution Supply Chain Framework Model

skops Patch: 0.12.0 CWE-351 668 4 ATLAS

HIGH EXPLOIT AVAIL

skops: OperatorFuncNode type confusion → RCE

CVE-2025-54412

EPSS 0.0%

9mo ago

Supply Chain Code Execution Framework Model

skops Patch: 0.12.0 CWE-351 668 4 ATLAS

MEDIUM EXPLOIT AVAIL

Ollama: auth token hijack via crafted WWW-Authenticate

Auth Bypass Data Extraction Supply Chain Inference API Model

ollama 1.4K 5 ATLAS

MEDIUM EXPLOIT AVAIL

Dagster: path traversal exposes arbitrary file read via gRPC

Data Extraction Data Leakage Framework Training Data

CWE-22 5 ATLAS

MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in DonutProcessor causes DoS

DoS Framework Inference

transformers CWE-1333 7.8K 4 ATLAS

MEDIUM EXPLOIT AVAIL

Contest Gallery WP Plugin: Stored XSS in OpenAI integration

Code Execution Data Leakage Plugin API

4 ATLAS

MEDIUM EXPLOIT AVAIL

OpenAI Operator: fullscreen spoofing captures credentials

Social Engineering Privacy Violation Agent API

operator 13.6K 6 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index: DocugamiReader MD5 hash collision drops chunks

Supply Chain Data Leakage Framework RAG

llama-index-readers-docugami Patch: 0.3.1 CWE-440 229 4 ATLAS

HIGH EXPLOIT AVAIL

llama_index: path traversal allows arbitrary file read

Data Extraction Data Leakage Framework RAG

llama-index-core Patch: 0.12.41 CWE-29 1.1K 4 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index Obsidian reader: hardlink path traversal leaks files

Data Extraction Supply Chain Framework RAG

llama-index-readers-obsidian Patch: 0.5.2 CWE-22 229 3 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index: JSONReader DoS via recursive JSON parsing

llama-index-core Patch: 0.12.38 CWE-674 1.1K 3 ATLAS

HIGH EXPLOIT AVAIL

LlamaIndex Obsidian: symlink traversal exposes host files

Data Extraction Data Leakage Framework RAG

llama-index-readers-obsidian Patch: 0.5.1 CWE-22 229 4 ATLAS

HIGH EXPLOIT AVAIL

llama-index Papers Loader: XML expansion DoS

DoS Supply Chain Framework RAG

llama-index-readers-papers Patch: 0.3.2 CWE-776 229 3 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index ArxivReader: MD5 collision corrupts training data

Supply Chain Model Poisoning Data Leakage Framework Training Data RAG

llama-index-readers-papers Patch: 0.3.1 CWE-440 229 5 ATLAS

LOW EXPLOIT AVAIL

Transformers: URL validation bypass exposes image pipeline

Data Leakage Social Engineering Framework

transformers CWE-20 7.8K 4 ATLAS

MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in dynamic module loader causes DoS

DoS Supply Chain Framework Model

transformers CWE-1333 7.8K 4 ATLAS

MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in config loader causes serving DoS

transformers CWE-1333 7.8K 4 ATLAS

HIGH EXPLOIT AVAIL

Transformers: ReDoS in chat.py causes CPU exhaustion

transformers CWE-1333 7.8K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?