AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems — LLM frameworks, ML libraries, AI agents, vector databases, and inference servers. Vulnerabilities are tracked from NVD, GitHub Advisory, CISA KEV, MITRE ATLAS, and enriched with CVSS, EPSS, exploitation confidence, AI-component classification, and compliance mappings to ISO 42001, EU AI Act, NIST AI RMF, and OWASP LLM Top 10. Updated continuously as new CVEs are published.
- CVSS severity
- EPSS exploit probability
- Exploitation confidence
- AI-component classification
- Compliance mappings
AI/ML CVEs Tracked
Critical
New This Week
In CISA KEV
Latest AI Security Threats
Showing 20 of 1583 results — no patch CVE-2026-28511 eLabFTW: IDOR exposes restricted resource titles 4.3 0.2% — Jun 1 CRIT CVE-2026-9319 IBM WebSphere: RCE via JAX-WS deserialization (CVSS 9.0) 9.0 0.4% — Jun 1 MEDI CVE-2026-43625 CodexBar: session cookie leak via HTTP redirect 5.9 0.2% — Jun 1 HIGH CVE-2026-43624 F5-TTS: path traversal enables arbitrary file write 8.2 0.4% — Jun 1 HIGH CVE-2026-38950 AnomalyMatch: RCE via torch.load() unsafe deserialization 7.8 0.1% — Jun 1 HIGH CVE-2026-10118 A flaw was found in Poppler's Splash backend. A... 7.8 — rhaiis/vllm-spyre-rhel9 Jun 1 MEDI E CVE-2026-10166 Edimax BR-6478AC: RCE via command injection in Wi-Fi handler 6.3 1.1% — May 31 MEDI E CVE-2026-10127 Edimax BR-6478AC: RCE via rootAPmac command injection 6.3 1.3% — May 30 MEDI E CVE-2026-47213 BoxLite: sandbox timeout bypass enables DoS via SIGALRM 6.5 0.3% boxlite May 29 MEDI CVE-2026-49384 PyCharm: stored XSS via Jupyter Markdown cells 6.1 0.2% — May 29 HIGH CVE-2026-35674 OpenClaw: scope bypass enables full agent admin takeover 8.8 0.3% openclaw May 29 MEDI CVE-2026-35673 OpenClaw: SSRF bypass exposes private network access 6.5 0.2% openclaw May 29 HIGH CVE-2026-35630 OpenClaw: auth bypass enables unauthorized agent approval 8.0 0.2% openclaw May 29 MEDI CVE-2026-34507 OpenClaw: policy bypass enables unauthorized admin command execution 5.4 0.1% openclaw May 29 MEDI CVE-2026-32906 OpenClaw: privilege escalation bypasses Slack plugin approval gate 4.3 0.2% openclaw May 29 HIGH CVE-2026-32905 OpenClaw: auth bypass enables persistent device enrollment 8.3 0.2% openclaw May 29 UNKN E CVE-2026-4944 vllm: trust_remote_code bypass enables RCE via HuggingFace — 0.7% vllm May 28 MEDI CVE-2026-46236 Linux Kernel: DMA coherency bug in xbox_remote driver 5.5 0.1% — May 28 HIGH CVE-2026-46181 Linux kernel RDMA/mlx4: RCU race may crash ML training nodes 7.8 0.1% — May 28 HIGH CVE-2026-46178 Linux mlx4 RDMA: resource leak on SRQ creation error 7.8 0.1% — May 28 Frequently asked questions
What is an AI security threat feed?
An AI security threat feed is a continuously updated stream of vulnerabilities (CVEs) affecting AI and machine-learning systems — LLM frameworks, ML libraries, AI agents, vector databases, and inference servers — filtered out of the broader CVE firehose and enriched for relevance.
Which sources are the AI CVEs tracked from?
CVEs are tracked from NVD, GitHub Advisory, CISA KEV, and MITRE ATLAS, then enriched with CVSS, EPSS, exploitation confidence, AI-component classification, and compliance mappings.
What AI systems do these vulnerabilities affect?
Coverage spans LLM frameworks, ML libraries, AI agents, vector databases, and inference servers — the components most security teams now run in production.
How often is the AI threat feed updated?
The feed updates continuously as new CVEs are published and enriched, so the most recent AI/ML vulnerabilities appear at the top.
Is the AI security feed free?
Yes — the public feed is free to browse. A Pro subscription adds breaking alerts, MITRE ATLAS mappings, compliance reports (ISO 42001, EU AI Act), and full CISO analysis.
Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial