AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
AI/ML CVEs Tracked
Critical
New This Week
In CISA KEV
Latest AI Security Threats
Showing 20 of 220 results — Medium severity, has patchllama-index ArxivReader: MD5 collision corrupts training data
CVE-2025-3044 llama-index: RCE via unsafe pickle deserialization
CVE-2025-3108 MLflow: unauthenticated SSRF in gateway proxy
CVE-2025-52967 vllm: ReDoS in inference endpoints enables DoS
GHSA-j828-28rj-hfhp vLLM: DoS via unbounded XGrammar schema cache
GHSA-hf3c-wxg2-49q9 xgrammar: unbounded grammar cache causes LLM server DoS
CVE-2025-32381 picklescan: bypass allows silent RCE in ML pipelines
GHSA-v7x6-rv5q-mhwc picklescan: numpy bypass enables RCE in ML model pipelines
GHSA-fj43-3qmq-673f SageMaker SDK: MD5 collision silently replaces ML workflows
CVE-2025-0508 llama-index: DoS via infinite recursion in web reader
CVE-2024-12910 langchain-core: file read via prompt template inputs
CVE-2024-10940 picklescan: ZIP spoof lets malicious PyTorch models bypass scan
CVE-2025-1944 Ray: Redis password exposed via plaintext logging
CVE-2025-1979 picklescan: scanner bypass enables supply chain RCE
CVE-2025-1716 picklescan: extension bypass enables RCE on model load
CVE-2025-1889 Label Studio: reflected XSS via label_config param
CVE-2025-25296 Gradio: Dropdown validation bypass enables arbitrary input
GHSA-26jh-r8g2-6fpr langchain-community: DoS via recursive sitemap loop
CVE-2024-2965 Label Studio: SSRF + file read, self-reg bypass
CVE-2022-36551 Jupyter Notebook: XSS via missing CSP on served files
CVE-2018-21030 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial