AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
78
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 910 results — Active exploitation Severity CVE ID Summary CVSS EPSS Package Date
UNKN E CVE-2025-1975 Ollama: DoS via malicious manifest in /api/pull — 0.5% ollama May 16 HIGH E CVE-2025-47783 Label Studio: XSS enables unauthorized actions via CSRF — 0.2% label-studio May 15 HIGH E CVE-2025-1752 llama_index: DoS via uncapped recursion in web reader 7.5 0.2% llama-index May 10 LOW E CVE-2025-4287 PyTorch NCCL: local DoS in distributed training reduce op 3.3 0.1% — May 5 CRIT E CVE-2025-47241 browser-use: URL allowlist bypass enables SSRF in agents 9.3 0.2% browser-use May 5 HIGH E CVE-2025-46567 LLaMA-Factory: RCE via torch.load() unsafe deserialization 7.8 0.2% llamafactory May 1 HIGH E CVE-2025-46560 vLLM: DoS via quadratic multimodal tokenizer input 7.5 0.6% vllm Apr 30 CRIT E CVE-2025-32444 vLLM: RCE via pickle deserialization on ZeroMQ 9.8 2.5% vllm Apr 30 HIGH E CVE-2025-30202 vLLM: ZeroMQ socket exposure enables DoS in multi-node 7.5 0.4% vllm Apr 30 MEDI E CVE-2025-1194 transformers: ReDoS in GPT-NeoX Japanese tokenizer 6.5 0.1% transformers Apr 29 CRIT E CVE-2025-32434 PyTorch: RCE bypasses weights_only=True safe-load guard 9.8 1.2% pytorch Apr 18 MEDI E CVE-2025-3730 PyTorch: DoS via ctc_loss resource mishandling 5.5 0.1% pytorch Apr 16 CRIT E CVE-2025-32428 jupyter-remote-desktop-proxy: VNC network exposure — 0.2% jupyter-remote-desktop-proxy Apr 12 CRIT E CVE-2025-32375 BentoML: RCE via insecure deserialization in runner 9.8 67.3% bentoml Apr 9 HIGH E CVE-2025-46417 picklescan: scanner bypass enables DNS data exfiltration — 0.2% picklescan Apr 7 CRIT CVE-2025-3248 Langflow: Unauth RCE via code injection endpoint 9.8 91.8% langflow Apr 7 CRIT E CVE-2025-27520 BentoML: unauthenticated RCE via insecure deserialization 9.8 81.0% bentoml Apr 4 HIGH E CVE-2025-30370 jupyterlab-git: command injection via malicious repo name 7.4 0.1% — Apr 4 LOW E CVE-2025-3136 PyTorch: memory corruption in CUDA caching allocator 3.3 0.1% pytorch Apr 3 MEDI E CVE-2025-3121 PyTorch: memory corruption in JIT flatbuffer loader 5.5 0.1% pytorch Apr 2 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial