AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

226

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1625 results

Severity CVE ID Summary CVSS EPSS Package Date

HIGH E CVE-2026-40217 LiteLLM: RCE via bytecode rewriting in guardrails API 8.8 0.2% litellm Apr 10 CRIT E CVE-2026-1115 lollms: Stored XSS enables wormable account takeover 9.6 0.0% lollms Apr 10 MEDI E CVE-2026-6011 OpenClaw: SSRF via web-fetch enables internal network pivot 5.6 0.1% openclaw Apr 10 HIGH E CVE-2026-40150 PraisonAIAgents: SSRF exposes cloud metadata via web_crawl 7.7 0.0% praisonaiagents Apr 9 MEDI E CVE-2026-40117 PraisonAI: arbitrary file read via unguarded skill tool 6.2 0.0% praisonaiagents Apr 9 HIGH E CVE-2026-40116 PraisonAI: unauth WebSocket drains OpenAI API credits 7.5 0.1% praisonai Apr 9 HIGH E CVE-2026-40113 PraisonAI: arg injection injects env vars into Cloud Run 8.4 0.0% praisonai Apr 9 MEDI E CVE-2026-40112 PraisonAI: XSS via no-op HTML sanitizer in agent output 5.4 0.0% praisonai Apr 9 CRIT E CVE-2026-40111 PraisonAI: RCE via shell injection in memory hooks executor — 0.0% praisonaiagents Apr 9 LOW GHSA-cm8v-2vh9-cxf3 openclaw: git env var injection enables host redirect — — openclaw Apr 9 MEDI CVE-2026-40087 LangChain: template injection leaks object attributes 5.3 0.1% langchain-core Apr 9 MEDI GHSA-ccx3-fw7q-rr2r openclaw: base64 pre-alloc bypass causes resource exhaustion — — openclaw Apr 9 MEDI GHSA-3vvq-q2qc-7rmp openclaw: no integrity check on ClawHub plugin installs — — openclaw Apr 9 HIGH GHSA-qx8j-g322-qj6m OpenClaw: unsafe body replay on cross-origin redirect — — openclaw Apr 9 MEDI GHSA-w9j9-w4cp-6wgr openclaw: env var injection enables host exec hijacking — — openclaw Apr 9 MEDI GHSA-w8g9-x8gx-crmm OpenClaw: SSRF bypass via Playwright redirect handling — — openclaw Apr 9 LOW GHSA-4f8g-77mw-3rxc OpenClaw: gateway auth expands read to write privilege — — openclaw Apr 9 MEDI GHSA-vr5g-mmx7-h897 OpenClaw: SSRF bypass via interaction-triggered navigation — — openclaw Apr 9 MEDI GHSA-67mf-f936-ppxf OpenClaw: scope misconfiguration enables unauthorized node pairing — — openclaw Apr 9 LOW GHSA-5fc7-f62m-8983 OpenClaw: local file read bypasses workspace policy — — openclaw Apr 9

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial