AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

79

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 910 results — Active exploitation
Severity CVE ID Summary CVSS EPSS Package Date
HIGH E CVE-2026-34936 PraisonAI: SSRF via api_base steals cloud IAM credentials 7.7 0.0% praisonai Apr 1 HIGH E CVE-2026-34937 PraisonAI: OS command injection via run_python() shell escape 7.8 0.0% praisonaiagents Apr 1 CRIT E CVE-2026-34938 praisonaiagents: sandbox bypass enables full host RCE 10.0 0.0% praisonaiagents Apr 1 HIGH E CVE-2026-34222 Open WebUI: access control bypass leaks Tool Valve API keys 7.7 0.0% open-webui Apr 1 MEDI E CVE-2026-34447 ONNX: symlink traversal reads host files via model loading 5.5 0.0% onnx Apr 1 UNKN E CVE-2026-27489 ONNX: symlink path traversal allows arbitrary file read 0.1% onnx Mar 31 CRIT E CVE-2026-0596 MLflow: command injection via model_uri in mlserver mode 9.6 0.2% Mar 31 HIGH E CVE-2026-29872 awesome-llm-apps MCP Agent: cross-session credential theft 8.2 0.1% Mar 30 UNKN E CVE-2026-2275 CrewAI: RCE via Docker fallback in CodeInterpreter 0.0% Mar 30 CRIT E CVE-2025-15379 MLflow: RCE via unsanitized model dependency specs 10.0 0.2% mlflow Mar 30 CRIT E CVE-2025-15036 MLflow: path traversal enables sandbox escape, file overwrite 9.6 0.0% mlflow Mar 30 LOW E CVE-2026-4993 OpenUI: hard-coded LiteLLM master key credential leak 3.3 0.0% Mar 28 HIGH E CVE-2026-34070 langchain-core: path traversal exposes host secrets via prompt config 7.5 0.0% langchain-core Mar 27 HIGH E CVE-2026-33989 @mobilenext/mobile-mcp: path traversal via AI agent tool 8.1 0.0% Mar 27 MEDI E CVE-2026-4963 smolagents: code injection via incomplete sandbox fix 6.3 0.0% smolagents Mar 27 HIGH E CVE-2025-15381 MLflow: broken access control exposes experiment traces 8.1 0.0% mlflow Mar 27 LOW E CVE-2026-29071 Open WebUI: IDOR exposes AI memories and private files 3.1 0.0% open-webui Mar 27 MEDI E CVE-2026-29070 open-webui: missing authz allows cross-KB file deletion 5.4 0.0% open-webui Mar 27 HIGH E CVE-2026-28788 Open WebUI: BOLA enables RAG poisoning via file overwrite 7.1 0.0% open-webui Mar 27 MEDI E CVE-2026-28786 Open WebUI: path traversal leaks server filesystem path 4.3 0.0% open-webui Mar 27

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial