AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 160 results — Critical severity, Active exploitation

CRITICAL EXPLOIT AVAIL SCANNER

Ray: unauthenticated LFI exposes entire filesystem

Data Extraction Auth Bypass Framework Training Data Model

ray Patch: 2.8.1 CWE-598 845 5 ATLAS

CRITICAL EXPLOIT AVAIL

MLflow: auth bypass allows arbitrary account creation

Auth Bypass Data Extraction Supply Chain Framework Training Data Model

mlflow 624 6 ATLAS

CRITICAL EXPLOIT AVAIL SCANNER

Ray: LFI allows unauthenticated file read

Data Extraction Auth Bypass Framework Inference

ray Patch: 2.8.1 CWE-22 845 5 ATLAS

CRITICAL EXPLOIT AVAIL

Ray: unauthenticated RCE via dashboard command injection

Code Execution Auth Bypass Supply Chain Framework Inference Training Data

ray Patch: 2.8.1 CWE-78 845 6 ATLAS

CRITICAL EXPLOIT AVAIL SCANNER

MLflow: unauth file overwrite enables model poisoning

Code Execution Model Poisoning Supply Chain Framework Model Training Data

mlflow 624 5 ATLAS

CRITICAL EXPLOIT AVAIL

MLeap: zip slip in model loading enables RCE

Supply Chain Code Execution Framework Model

3 ATLAS

CRITICAL KEV

LangChain: RCE bypass via __import__ in PAL chain

Code Execution Auth Bypass Framework Agent

langchain_experimental 2.6K 4 ATLAS

CRITICAL KEV SCANNER

TorchServe: SSRF + RCE via unrestricted model URL loading

Code Execution Supply Chain Data Extraction Framework Inference Model

torchserve 21.7K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via numexpr evaluate injection

Code Execution Supply Chain Framework Agent Plugin

langchain CWE-94 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via malicious JSON prompt template

Code Execution Supply Chain Framework Agent

langchain CWE-94 2.6K 4 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via unsanitized PythonAstREPL input

Code Execution Prompt Injection Framework Agent Plugin

langchain CWE-74 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via unsandboxed LLM code execution

Code Execution Prompt Injection Data Extraction Framework Agent API

langchain CWE-74 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via unsanitized prompt parameter

Code Execution Prompt Injection Data Extraction Framework Agent

langchain CWE-94 2.6K 7 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain PALChain: RCE via unsanitized exec() calls

Code Execution Prompt Injection Framework Agent

langchain CWE-94 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL SCANNER

MLflow: path traversal allows arbitrary file read

Data Extraction Data Leakage Supply Chain Framework Model Training Data

mlflow 624 6 ATLAS

CRITICAL EXPLOIT AVAIL

QuickAI: unauthenticated SQLi exposes OpenAI API keys

Data Extraction Auth Bypass API

quickai_openai 13.6K 3 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via PALChain unsanitized Python exec

Code Execution Supply Chain Data Extraction Framework Agent

langchain CWE-74 2.6K 4 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: unauthenticated RCE via code injection

Code Execution Supply Chain Data Extraction Framework Agent RAG

langchain CWE-94 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via unsafe load_prompt deserialization

Code Execution Supply Chain Data Extraction Framework Agent

langchain 2.6K 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain: RCE via JiraAPIWrapper crafted input

Code Execution Supply Chain Data Extraction Framework Agent Plugin

langchain 2.6K 6 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?