AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

79

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 267 results — Medium severity, Active exploitation
MEDIUM EXPLOIT AVAIL

Open WebUI: missing authz leaks admin credentials

CVE-2024-7046
4.3
EPSS 0.2%
Auth Bypass Data Extraction Privacy Violation API Framework
open-webui CWE-475 3 ATLAS
MEDIUM EXPLOIT AVAIL

open-webui: missing authz exposes admin prompts

CVE-2024-7045
4.3
EPSS 0.2%
Auth Bypass Data Leakage API Framework
open-webui CWE-862 5 ATLAS
MEDIUM EXPLOIT AVAIL

Open WebUI: Stored XSS via file upload, session hijack

CVE-2024-7044
6.8
EPSS 0.2%
Auth Bypass Data Extraction Social Engineering Framework API
open-webui CWE-79 5 ATLAS
MEDIUM EXPLOIT AVAIL

open-webui: path traversal allows file write and RCE

CVE-2024-7033
6.5
EPSS 1.3%
Code Execution DoS Framework Inference
open-webui CWE-29 3 ATLAS
MEDIUM EXPLOIT AVAIL

open-webui: path traversal allows arbitrary file write/RCE

CVE-2024-7034
6.5
EPSS 6.7%
Code Execution Supply Chain Framework Inference API
open-webui CWE-22 4 ATLAS
MEDIUM EXPLOIT AVAIL

llama-index: DoS via infinite recursion in web reader

CVE-2024-12910
5.9
EPSS 0.4%
DoS Supply Chain Framework RAG
llama-index Patch: 0.12.9 CWE-400 229 4 ATLAS
MEDIUM EXPLOIT AVAIL

MLflow: passwordless accounts enable persistent backdoor

CVE-2025-1474
5.5
EPSS 0.1%
Auth Bypass Supply Chain Model Poisoning Framework Training Data Model
mlflow CWE-521 624 5 ATLAS
MEDIUM EXPLOIT AVAIL

Gradio: open redirect exposes AI demo users to phishing

CVE-2024-8021
6.1
EPSS 2.4%
Social Engineering Auth Bypass Framework API
gradio CWE-601 674 4 ATLAS
MEDIUM EXPLOIT AVAIL

MLflow: unconstrained input causes UI denial of service

CVE-2024-6838
5.3
EPSS 0.6%
DoS Framework
mlflow CWE-400 624 3 ATLAS
MEDIUM EXPLOIT AVAIL

TorchServe: unverified S3 bucket exposes benchmark data

CVE-2024-6577
6.3
EPSS 0.2%
Supply Chain Data Leakage Data Extraction Framework Inference
3 ATLAS
MEDIUM EXPLOIT AVAIL

Gradio: NTFS ADS bypass exposes blocked file paths

CVE-2024-12217
5.3
EPSS 0.3%
Data Extraction Data Leakage Auth Bypass Framework API
gradio CWE-22 674 3 ATLAS
MEDIUM EXPLOIT AVAIL

langchain-core: file read via prompt template inputs

CVE-2024-10940
5.3
EPSS 0.3%
Data Extraction Data Leakage Privacy Violation Framework Agent
langchain-core Patch: 0.1.53 CWE-497 4.3K 4 ATLAS
MEDIUM EXPLOIT AVAIL

vLLM: DoS via unbounded grammar cache exhausts disk

CVE-2025-29770
6.5
EPSS 0.7%
DoS Inference Framework API
vllm CWE-770 126 4 ATLAS
MEDIUM EXPLOIT AVAIL

picklescan: ZIP spoof lets malicious PyTorch models bypass scan

CVE-2025-1944
6.5
EPSS 0.1%
Supply Chain Code Execution Framework Model
picklescan Patch: 0.0.23 CWE-345 3 5 ATLAS
MEDIUM EXPLOIT AVAIL

picklescan: scanner bypass enables supply chain RCE

CVE-2025-1716
--
EPSS 16.2%
Supply Chain Code Execution Model Framework
picklescan Patch: 0.0.22 CWE-184 3 5 ATLAS
MEDIUM EXPLOIT AVAIL

picklescan: extension bypass enables RCE on model load

CVE-2025-1889
--
EPSS 0.1%
Supply Chain Code Execution Model Framework
picklescan Patch: 0.0.22 CWE-646 3 5 ATLAS
MEDIUM EXPLOIT AVAIL

Label Studio: reflected XSS via label_config param

CVE-2025-25296
6.1
EPSS 20.0%
Code Execution Data Extraction Training Data Framework
label-studio Patch: 1.16.0 CWE-79 1 4 ATLAS
MEDIUM EXPLOIT AVAIL

Composio: command injection in AI agent tool calls

CVE-2024-53526
6.4
EPSS 0.8%
Code Execution Supply Chain Framework Agent API
CWE-77 5 ATLAS
MEDIUM EXPLOIT AVAIL

Keras: path traversal enables arbitrary file write

CVE-2024-55459
6.5
EPSS 0.1%
Supply Chain Code Execution Framework Training Data
keras CWE-22 1.5K 4 ATLAS
MEDIUM EXPLOIT AVAIL

WP Text Prompter: Stored XSS in OpenAI shortcode plugin

CVE-2024-11896
6.4
EPSS 0.1%
Code Execution Data Extraction Plugin API
4 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial