AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

75

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
Severity CVE ID Summary CVSS EPSS Package Date
UNKN CVE-2026-0769 langflow: Code Injection enables RCE 1.9% langflow Jan 23 UNKN CVE-2026-0768 langflow: Code Injection enables RCE 1.9% langflow Jan 23 UNKN CVE-2025-15063 Ollama: Command Injection enables RCE 0.8% Jan 23 HIGH E CVE-2025-65098 typebot: XSS enables session hijacking 7.4 0.0% Jan 22 CRIT CVE-2026-22807 vllm: Code Injection enables RCE 9.8 0.0% vllm Jan 21 HIGH CVE-2026-21852 claude_code: Weak Credentials allow account compromise 7.5 0.0% claude_code Jan 21 HIGH E CVE-2025-66960 ollama: Input Validation flaw enables exploitation 7.5 0.3% ollama Jan 21 HIGH E CVE-2025-66959 ollama: Input Validation flaw enables exploitation 7.5 0.3% ollama Jan 21 HIGH CVE-2025-33233 NVIDIA: Code Injection enables RCE 7.8 0.0% Jan 20 CRIT E CVE-2026-0863 n8n: Code Injection enables RCE 9.9 0.0% n8n Jan 18 MEDI CVE-2025-68949 n8n: security flaw enables exploitation 5.3 0.0% n8n Jan 13 HIGH E CVE-2025-15514 ollama: security flaw enables exploitation 7.5 0.1% ollama Jan 12 HIGH E CVE-2024-58340 langchain: security flaw enables exploitation 7.5 0.1% langchain Jan 12 HIGH E CVE-2024-58339 llamaindex: Resource Exhaustion enables DoS 7.5 0.1% llamaindex Jan 12 HIGH E CVE-2024-14021 llamaindex: Deserialization enables RCE 7.8 0.1% llamaindex Jan 12 HIGH E CVE-2026-22033 label-studio: XSS enables session hijacking 0.0% label-studio Jan 12 HIGH E CVE-2026-22773 vllm: Resource Exhaustion enables DoS 7.5 0.0% vllm Jan 10 MEDI E CVE-2025-14980 BetterDocs: Info Disclosure leaks sensitive data 6.5 0.0% Jan 9 MEDI CVE-2026-21894 n8n: security flaw enables exploitation 6.5 0.0% n8n Jan 8 CRIT E CVE-2026-21877 n8n: Code Injection enables RCE 9.9 13.3% n8n Jan 8

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial