AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 160 results — Critical severity, Active exploitation

CRITICAL EXPLOIT AVAIL

Keras: safe_mode bypass enables RCE via model loading

Code Execution Supply Chain Framework Model

keras CWE-94 1.5K 6 ATLAS

CRITICAL EXPLOIT AVAIL

picklescan: ZIP flag bypass enables RCE in PyTorch models

Supply Chain Code Execution Model Framework

picklescan CWE-345 3 6 ATLAS

CRITICAL EXPLOIT AVAIL

spacy-llm: SSTI allows unauthenticated RCE (CVSS 9.8)

Code Execution Data Extraction Framework

spacy-llm Patch: 0.7.3 CWE-94 154 4 ATLAS

CRITICAL EXPLOIT AVAIL

LlamaFactory: RCE via OS command injection in training

Code Execution Supply Chain Framework Training Data

llamafactory Patch: 0.9.1 CWE-78 1 6 ATLAS

CRITICAL EXPLOIT AVAIL

Langflow: RCE via unsandboxed code component execution

Code Execution Auth Bypass Framework Agent

langflow CWE-94 5 ATLAS

CRITICAL EXPLOIT AVAIL

Langflow: Unauthenticated RCE via PythonCodeTool

Code Execution Supply Chain Data Extraction Framework Agent Plugin

langflow 6 ATLAS

CRITICAL EXPLOIT AVAIL

PyTorch: RCE via RemoteModule deserialization

Code Execution Supply Chain Framework Training Data

pytorch CWE-502 21.7K 4 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain GraphCypher: prompt injection enables DB wipe

Prompt Injection Data Extraction DoS Framework Agent RAG

langchain CWE-74 2.6K 7 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain.js: path traversal, arbitrary file read/write

Data Extraction Code Execution Data Leakage Framework Agent

langchain.js CWE-22 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChainJS: prompt injection enables full graph DB takeover

Prompt Injection Data Extraction Code Execution Framework Agent API

langchain 2.6K 6 ATLAS

CRITICAL EXPLOIT AVAIL

Affiliator WP Plugin: Unauthenticated Web Shell Upload

Code Execution Auth Bypass Supply Chain Framework API

affiliator 1.5K 6 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain-Experimental: RCE via eval in math chain

Code Execution Supply Chain Framework Agent

langchain-experimental 2.6K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: blind SSRF via unvalidated URL input

Data Extraction Auth Bypass Framework API

streamlit-geospatial CWE-918 2.8K 3 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: RCE via eval() on vis_params input

Code Execution Framework Inference

streamlit-geospatial 2.8K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: blind SSRF via WMS URL input

Data Extraction Auth Bypass Privacy Violation Framework API

streamlit-geospatial CWE-918 2.8K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: eval() injection allows RCE

Code Execution Framework

streamlit-geospatial 2.8K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: RCE via eval() injection

Code Execution Framework

streamlit-geospatial 2.8K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: eval() injection enables RCE

Code Execution Data Extraction Framework

streamlit-geospatial 2.8K 5 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: RCE via eval() on palette input

Code Execution Data Extraction Framework Inference

streamlit-geospatial 2.8K 4 ATLAS

CRITICAL EXPLOIT AVAIL

streamlit-geospatial: RCE via eval() in Timelapse page

Code Execution Data Extraction Framework

streamlit-geospatial 2.8K 5 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?