AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 684 results — High severity
Severity CVE ID Summary CVSS EPSS Package Date
HIGH CVE-2025-61917 n8n: Info Disclosure leaks sensitive data 7.7 0.0% n8n Feb 4 HIGH CVE-2026-1777 sagemaker: security flaw enables exploitation 7.2 0.0% sagemaker Feb 2 HIGH GHSA-9m3x-qqw2-h32h picklescan: Deserialization enables RCE picklescan Feb 2 HIGH E CVE-2026-1117 lollms: Access Control bypass enables privilege escalation 8.2 0.1% lollms Feb 2 HIGH E CVE-2026-0599 text-generation: DoS causes service disruption 7.5 0.3% Feb 2 HIGH E CVE-2025-10279 mlflow: security flaw enables exploitation 7.0 0.0% mlflow Feb 2 HIGH E CVE-2026-24780 agpt: Code Injection enables RCE 8.8 0.1% Jan 29 HIGH E CVE-2026-24779 vllm: SSRF allows internal network access 7.1 0.0% vllm Jan 27 HIGH E CVE-2026-24747 pytorch: Code Injection enables RCE 8.8 0.1% pytorch Jan 27 HIGH CVE-2026-0770 langflow: security flaw enables exploitation 11.9% langflow Jan 23 HIGH E CVE-2025-65098 typebot: XSS enables session hijacking 7.4 0.0% Jan 22 HIGH CVE-2026-21852 claude_code: Weak Credentials allow account compromise 7.5 0.0% claude_code Jan 21 HIGH E CVE-2025-66960 ollama: Input Validation flaw enables exploitation 7.5 0.3% ollama Jan 21 HIGH E CVE-2025-66959 ollama: Input Validation flaw enables exploitation 7.5 0.3% ollama Jan 21 HIGH CVE-2025-33233 NVIDIA: Code Injection enables RCE 7.8 0.0% Jan 20 HIGH E CVE-2026-22219 chainlit: SSRF allows internal network access 7.7 0.0% chainlit Jan 20 HIGH CVE-2026-0897 keras: Resource Exhaustion enables DoS 0.0% keras Jan 15 HIGH E CVE-2025-15514 ollama: security flaw enables exploitation 7.5 0.1% ollama Jan 12 HIGH E CVE-2024-58340 langchain: security flaw enables exploitation 7.5 0.1% langchain Jan 12 HIGH E CVE-2024-58339 llamaindex: Resource Exhaustion enables DoS 7.5 0.1% llamaindex Jan 12

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial