AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 910 results — Active exploitation

MEDIUM EXPLOIT AVAIL

picklescan: scanner bypass enables supply chain RCE

CVE-2025-1716

EPSS 16.2%

1y ago

Supply Chain Code Execution Model Framework

picklescan Patch: 0.0.22 CWE-184 3 5 ATLAS

MEDIUM EXPLOIT AVAIL

picklescan: extension bypass enables RCE on model load

CVE-2025-1889

EPSS 0.1%

1y ago

Supply Chain Code Execution Model Framework

picklescan Patch: 0.0.22 CWE-646 3 5 ATLAS

HIGH EXPLOIT AVAIL

gpt_academic: symlink traversal exposes all server files

Data Extraction Privacy Violation Framework

gpt_academic 4 ATLAS

MEDIUM EXPLOIT AVAIL

Label Studio: reflected XSS via label_config param

Code Execution Data Extraction Training Data Framework

label-studio Patch: 1.16.0 CWE-79 1 4 ATLAS

HIGH EXPLOIT AVAIL

Label Studio SDK: path traversal leaks server filesystem

CVE-2025-25295

EPSS 0.1%

1y ago

Data Extraction Data Leakage Privacy Violation Framework Training Data

label-studio-sdk Patch: 1.0.10 CWE-26 1 5 ATLAS

HIGH EXPLOIT AVAIL

Gradio: ACL bypass via path case manipulation

Auth Bypass Data Extraction Framework API

gradio CWE-178 679 4 ATLAS

MEDIUM EXPLOIT AVAIL

Composio: command injection in AI agent tool calls

Code Execution Supply Chain Framework Agent API

CWE-77 5 ATLAS

MEDIUM EXPLOIT AVAIL

Keras: path traversal enables arbitrary file write

Supply Chain Code Execution Framework Training Data

keras CWE-22 1.5K 4 ATLAS

MEDIUM EXPLOIT AVAIL

WP Text Prompter: Stored XSS in OpenAI shortcode plugin

Code Execution Data Extraction Plugin API

4 ATLAS

HIGH EXPLOIT AVAIL

Lobe Chat: pre-auth SSRF leaks OpenAI API keys

Data Extraction Auth Bypass API Framework

6 ATLAS

HIGH EXPLOIT AVAIL

Transformers: RCE via Trax model deserialization

Code Execution Supply Chain Framework Model

transformers CWE-502 7.9K 6 ATLAS

HIGH EXPLOIT AVAIL

Transformers: RCE via MaskFormer model deserialization

Code Execution Supply Chain Framework Model

transformers CWE-502 7.9K 6 ATLAS

HIGH EXPLOIT AVAIL

HuggingFace Transformers: RCE via config deserialization

Supply Chain Code Execution Framework Model

transformers CWE-502 7.9K 6 ATLAS

CRITICAL EXPLOIT AVAIL

LlamaFactory: RCE via OS command injection in training

Code Execution Supply Chain Framework Training Data

llamafactory Patch: 0.9.1 CWE-78 1 6 ATLAS

HIGH EXPLOIT AVAIL

Intel Extension for Transformers: path traversal privesc

Code Execution Supply Chain Framework

4 ATLAS

MEDIUM EXPLOIT AVAIL

Gradio: path traversal exposes arbitrary server files

Data Extraction Data Leakage Framework

gradio CWE-22 679 3 ATLAS

CRITICAL EXPLOIT AVAIL

Langflow: RCE via unsandboxed code component execution

Code Execution Auth Bypass Framework Agent

langflow CWE-94 5 ATLAS

MEDIUM EXPLOIT AVAIL

Gradio: SSRF in DownloadButton exposes internal resources

Data Extraction Privacy Violation Framework Inference

gradio CWE-918 679 4 ATLAS

HIGH EXPLOIT AVAIL

Ollama: path traversal exposes server filesystem

Data Extraction Data Leakage Inference API

ollama 1.5K 4 ATLAS

HIGH EXPLOIT AVAIL

Ollama: DoS via /dev/random causes goroutine exhaustion

DoS Inference API Framework

ollama 1.5K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?