AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 512 results — has patch

Severity CVE ID Summary CVSS EPSS Package Date

MEDI GHSA-qqq7-4hxc-x63c openclaw: local file exfiltration via trusted MEDIA refs — — openclaw Apr 9 MEDI GHSA-q2gc-xjqw-qp89 OpenClaw: eval approval bypass enables unintended code exec — — openclaw Apr 9 HIGH GHSA-7437-7hg8-frrw OpenClaw: env var injection enables host RCE — — openclaw Apr 9 HIGH GHSA-jf56-mccx-5f3f OpenClaw: wake hook trust violation elevates to System prompt — — openclaw Apr 9 HIGH GHSA-gfmx-pph7-g46x openclaw: trust boundary bypass enables prompt injection — — openclaw Apr 9 CRIT GHSA-2763-cj5r-c79m PraisonAI: RCE via shell injection in agent workflows 9.7 — PraisonAI Apr 8 MEDI GHSA-926x-3r5x-gfhw LangChain: f-string template injection exposes object internals 5.3 — langchain-core Apr 8 CRIT GHSA-2679-6mx9-h9xc Marimo: pre-auth RCE via terminal WebSocket — — marimo Apr 8 HIGH GHSA-4ggg-h7ph-26qr n8n-mcp: authenticated SSRF leaks cloud metadata 8.5 — n8n-mcp Apr 8 MEDI GHSA-766v-q9x3-g744 praisonaiagents: agent context leak + path traversal 6.5 — praisonaiagents Apr 8 HIGH E CVE-2026-39891 praisonai: SSTI enables RCE via agent instructions 8.8 0.0% praisonai Apr 8 HIGH CVE-2026-39889 PraisonAI: unauth A2U stream leaks all agent activity 7.5 0.0% praisonai Apr 8 CRIT CVE-2026-39888 praisonaiagents: sandbox escape enables host RCE 10.0 0.1% praisonaiagents Apr 8 CRIT E CVE-2026-39890 PraisonAI: YAML deserialization enables unauthenticated RCE 9.8 0.6% praisonai Apr 8 MEDI E CVE-2026-39411 LobeChat: auth bypass via forged XOR obfuscated header 5.0 0.0% @lobehub/lobehub Apr 8 HIGH GHSA-69x8-hrgq-fjj8 LiteLLM: auth bypass chain enables full privilege escalation — — litellm Apr 8 HIGH GHSA-89gg-p5r5-q6r4 MONAI: pickle deserialization RCE in Auto3DSeg 7.7 — monai Apr 7 MEDI GHSA-83f3-hh45-vfw9 OpenClaw: cleartext WebSocket exposes gateway credentials — — openclaw Apr 7 MEDI GHSA-jj6q-rrrf-h66h openclaw: timing side-channel leaks shared-secret length — — openclaw Apr 7 MEDI GHSA-rxmx-g7hr-8mx4 OpenClaw: Zalo webhook dedup collision silently drops events — — openclaw Apr 7

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial