AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch

Severity CVE ID Summary CVSS EPSS Package Date

CRIT CVE-2025-34351 ray: security flaw enables exploitation — 0.5% ray Nov 27 HIGH E CVE-2025-62609 mlx: security flaw enables exploitation 7.5 0.1% mlx Nov 21 CRIT E CVE-2025-62608 mlx: security flaw enables exploitation 9.1 0.1% mlx Nov 21 HIGH E CVE-2025-12973 AI component: Arbitrary File Upload enables RCE 7.2 0.1% — Nov 21 MEDI CVE-2025-62426 vllm: Resource Exhaustion enables DoS 6.5 0.1% vllm Nov 21 MEDI CVE-2025-62372 vllm: security flaw enables exploitation 6.5 0.1% vllm Nov 21 HIGH CVE-2025-62164 vllm: Input Validation flaw enables exploitation 8.8 0.2% vllm Nov 21 LOW E CVE-2025-63396 pytorch: security flaw enables exploitation 3.3 0.0% pytorch Nov 12 MEDI CVE-2025-12732 AI component: Info Disclosure leaks sensitive data 4.3 0.0% — Nov 12 MEDI CVE-2025-11972 AI component: SQL Injection exposes database 4.9 0.0% — Nov 8 MEDI CVE-2025-12360 Better: security flaw enables exploitation 4.3 0.0% — Nov 6 MEDI E CVE-2025-12695 dspy: security flaw enables exploitation 5.9 0.0% — Nov 4 HIGH CVE-2025-62726 n8n: security flaw enables exploitation 8.8 0.1% n8n Oct 30 LOW E CVE-2025-50736 pdf2zh: security flaw enables exploitation — 0.0% — Oct 30 UNKN CVE-2025-11203 LiteLLM: Info Disclosure leaks sensitive data — 0.1% — Oct 29 CRIT E CVE-2025-11201 mlflow: Path Traversal enables file access 9.8 9.8% mlflow Oct 29 CRIT CVE-2025-11200 mlflow: security flaw enables exploitation 9.8 0.2% mlflow Oct 29 MEDI E CVE-2025-11844 smolagents: security flaw enables exploitation 5.4 0.0% smolagents Oct 22 MEDI E CVE-2025-60511 Moodle: IDOR enables unauthorized data access 4.3 0.0% — Oct 21 CRIT GHSA-m9mp-6x32-5rhg scio/PyTorch: torch.load weights_only bypass RCE — — — Oct 9

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial