AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

230

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 569 results — Medium severity
Severity CVE ID Summary CVSS EPSS Package Date
MEDI CVE-2026-25631 n8n: Input Validation flaw enables exploitation 6.5 0.0% n8n Feb 6 MEDI CVE-2026-25640 pydantic-ai: Path Traversal enables file access 5.4 0.0% pydantic-ai-slim Feb 6 MEDI E CVE-2026-25475 OpenClaw: path traversal enables arbitrary file read 6.5 0.1% openclaw Feb 4 MEDI CVE-2026-25054 n8n: XSS enables session hijacking 5.4 0.0% n8n Feb 4 MEDI CVE-2026-25051 n8n: XSS enables session hijacking 5.4 0.0% n8n Feb 4 MEDI CVE-2026-1778 sagemaker: security flaw enables exploitation 5.9 0.0% sagemaker Feb 2 MEDI GHSA-m7j5-r2p5-c39r picklescan: Deserialization enables RCE picklescan Feb 2 MEDI E CVE-2025-6208 llama-index-core: DoS causes service disruption 5.3 0.0% llama-index-core Feb 2 MEDI GHSA-gpx9-96j6-pp87 agentos-taskweaver: Protection Bypass circumvents security controls 6.5 Jan 28 MEDI E CVE-2026-24123 bentoml: Path Traversal enables file access 6.5 0.0% bentoml Jan 26 MEDI CVE-2025-68492 chainlit: IDOR enables unauthorized data access 4.2 0.0% chainlit Jan 14 MEDI CVE-2025-68949 n8n: security flaw enables exploitation 5.3 0.0% n8n Jan 13 MEDI E CVE-2025-14980 BetterDocs: Info Disclosure leaks sensitive data 6.5 0.0% Jan 9 MEDI CVE-2026-21894 n8n: security flaw enables exploitation 6.5 0.0% n8n Jan 8 MEDI E CVE-2026-21851 monai: Path Traversal enables file access 5.3 0.0% monai Jan 6 MEDI E CVE-2025-14371 AI component: Missing Auth allows unauthorized operations 4.3 0.0% Jan 6 MEDI GHSA-6556-fwc2-fg2p picklescan: Code Injection enables RCE picklescan Dec 30 MEDI GHSA-cffc-mxrf-mhh4 picklescan: Code Injection enables RCE picklescan Dec 29 MEDI CVE-2025-68697 n8n: security flaw enables exploitation 5.4 0.0% n8n Dec 26 MEDI CVE-2025-61914 n8n: XSS enables session hijacking 5.4 0.0% n8n Dec 26

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial