AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
AI/ML CVEs Tracked
Critical
New This Week
In CISA KEV
Latest AI Security Threats
Showing 20 of 910 results — Active exploitationTensorFlow: DoS via malformed Convolution3D input
CVE-2023-25661 TensorFlow: double-free in pooling ops enables RCE
CVE-2023-25801 TensorFlow: null pointer DoS in RandomShuffle (XLA)
CVE-2023-25674 TensorFlow: unauthenticated RCE via heap buffer overflow
CVE-2023-25668 TensorFlow: integer overflow DoS in video frame decoding
CVE-2023-25667 TensorFlow: null ptr deref DoS via sparse tensors
CVE-2023-25665 TensorFlow: heap overflow in AvgPoolGrad, RCE risk
CVE-2023-25664 MLflow: path traversal allows arbitrary file read/write
CVE-2023-1177 MLflow: path traversal exposes arbitrary local files
CVE-2023-1176 Gradio: hardcoded SSH key leaks via share=True demos
CVE-2023-25823 TensorFlow Grappler: OOB read/crash via crafted model
CVE-2022-41902 PyTorch: RCE via unsafe eval in JIT annotations
CVE-2022-45907 TensorFlow: remote DoS via malformed tensor input
CVE-2022-41909 TensorFlow: DoS via invalid UTF-8 input to PyFunc op
CVE-2022-41908 TensorFlow: integer overflow in ResizeNearestNeighborGrad → DoS
CVE-2022-41907 TensorFlow: DoS via SparseMatrixNNZ CHECK assertion fail
CVE-2022-41901 TensorFlow: heap OOB RCE in FractionalMaxPool op
CVE-2022-41900 TensorFlow: SdcaOptimizer DoS via malformed tensor rank
CVE-2022-41899 TensorFlow: DoS crash via empty SparseFillEmptyRowsGrad inputs
CVE-2022-41898 TensorFlow: OOB read in FractionMaxPoolGrad causes DoS
CVE-2022-41897 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial