AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

75

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 684 results — High severity
Severity CVE ID Summary CVSS EPSS Package Date
HIGH CVE-2025-9141 vLLM: RCE via eval() in Qwen3 Coder tool parser 8.8 vllm Aug 21 HIGH CVE-2025-23298 Merlin Transformers4Rec: code injection via Python dep 7.8 0.0% Aug 13 HIGH GHSA-9gvj-pp9x-gcfr picklescan: detection bypass allows malicious pickle exec picklescan Aug 12 HIGH E CVE-2025-8747 Keras: safe mode bypass enables RCE via model load 7.8 0.0% keras Aug 11 HIGH E CVE-2025-54886 skops: joblib fallback enables RCE via model load 8.4 0.4% skops Aug 8 HIGH CVE-2025-7725 WP Contest Gallery: Stored XSS exposes OpenAI API creds 7.2 0.3% Aug 1 HIGH E CVE-2025-54413 skops: RCE via MethodNode unsafe deserialization 0.0% skops Jul 26 HIGH E CVE-2025-54412 skops: OperatorFuncNode type confusion → RCE 0.0% skops Jul 26 HIGH CVE-2025-30402 ExecuTorch: heap overflow in method load, RCE risk 8.1 0.4% executorch Jul 11 HIGH E CVE-2025-6209 llama_index: path traversal allows arbitrary file read 7.5 0.4% llama-index-core Jul 7 HIGH CVE-2025-6386 lollms: timing attack enables credential enumeration 7.5 0.3% lollms Jul 7 HIGH E CVE-2025-3225 llama-index Papers Loader: XML expansion DoS 7.5 0.3% llama-index-readers-papers Jul 7 HIGH E CVE-2025-3046 LlamaIndex Obsidian: symlink traversal exposes host files 7.5 0.5% llama-index-readers-obsidian Jul 7 HIGH E CVE-2025-3262 Transformers: ReDoS in chat.py causes CPU exhaustion 7.5 0.3% transformers Jul 7 HIGH E CVE-2025-6855 Langchain-Chatchat: path traversal exposes system files 8.8 0.7% langchain-chatchat Jun 29 HIGH CVE-2025-5018 Hive Support WP: OpenAI key theft + prompt hijack 7.1 0.2% Jun 6 HIGH E CVE-2025-30167 jupyter_core: config hijack enables cross-user code exec 7.3 0.1% Jun 4 HIGH E CVE-2025-48889 Gradio: unauthenticated file copy enables disk DoS 7.5 1.5% gradio May 30 HIGH CVE-2025-46722 vLLM: image hash collision enables multimodal cache leakage 7.3 0.2% vllm May 29 HIGH E CVE-2025-1753 llama-index-cli: OS command injection enables RCE 7.8 0.1% llama-index May 28

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial