AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

226

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1625 results
MEDIUM

openclaw: SSRF bypass in QQ Bot media fetch paths

GHSA-3fv3-6p2v-gxwj
--
Data Extraction Auth Bypass Agent Plugin
openclaw Patch: 2026.4.8 CWE-918 4 5 ATLAS 1 incident
MEDIUM

openclaw: WS sessions persist after gateway token rotation

GHSA-5h3f-885m-v22w
--
Auth Bypass Agent
openclaw Patch: 2026.4.8 CWE-613 4 3 ATLAS 1 incident
LOW

OpenClaw: auth rate-limit bypass via async race condition

GHSA-25wv-8phj-8p7r
--
Auth Bypass DoS Agent
openclaw Patch: 2026.4.4 CWE-400 4 3 ATLAS 1 incident
HIGH

openclaw: auth bypass enables exec escalation on reconnect

GHSA-5wj5-87vq-39xm
--
Auth Bypass Code Execution Agent Plugin
openclaw Patch: 2026.4.8 CWE-288 4 4 ATLAS 1 incident
MEDIUM

OpenClaw: cross-channel allowlist write bypass

GHSA-vc32-h5mq-453v
--
Auth Bypass Agent
openclaw Patch: 2026.4.8 4 3 ATLAS 1 incident
MEDIUM

OpenClaw: stale auth closure bypasses gateway access control

GHSA-68x5-xx89-w9mm
--
Auth Bypass Agent
openclaw Patch: 2026.4.8 CWE-613 4 3 ATLAS 1 incident
MEDIUM

OpenClaw: auth bypass enables persistent browser profile mutation

GHSA-cmfr-9m2r-xwhq
--
Auth Bypass Agent Plugin
openclaw Patch: 2026.4.8 CWE-863 4 4 ATLAS 1 incident
MEDIUM

OpenClaw: token rotation bypasses role approval

GHSA-whf9-3hcx-gq54
--
Auth Bypass Agent
openclaw Patch: 2026.4.8 CWE-863 4 4 ATLAS 1 incident
MEDIUM

openclaw: local file exfiltration via trusted MEDIA refs

GHSA-qqq7-4hxc-x63c
--
Data Extraction Privacy Violation Agent Plugin
openclaw Patch: 2026.4.8 CWE-668 4 4 ATLAS 1 incident
MEDIUM

OpenClaw: eval approval bypass enables unintended code exec

GHSA-q2gc-xjqw-qp89
--
Auth Bypass Code Execution Agent Framework
openclaw Patch: 2026.4.8 CWE-20 4 5 ATLAS 1 incident
HIGH

n8n-MCP: SSRF exposes cloud metadata via MCP headers

CVE-2026-39974
8.5
EPSS 0.0%
Data Extraction Data Leakage Agent Plugin
CWE-918 5 ATLAS
HIGH

OpenClaw: env var injection enables host RCE

GHSA-7437-7hg8-frrw
--
Code Execution Supply Chain Agent Plugin
openclaw Patch: 2026.4.8 CWE-184 4 5 ATLAS 1 incident
HIGH

OpenClaw: wake hook trust violation elevates to System prompt

GHSA-jf56-mccx-5f3f
--
Prompt Injection Auth Bypass Agent Plugin
openclaw Patch: 2026.4.8 CWE-501 4 6 ATLAS 1 incident
HIGH

openclaw: trust boundary bypass enables prompt injection

GHSA-gfmx-pph7-g46x
--
Prompt Injection Auth Bypass Agent Plugin
openclaw Patch: 2026.4.8 CWE-501 4 5 ATLAS 1 incident
CRITICAL

PraisonAI: RCE via shell injection in agent workflows

GHSA-2763-cj5r-c79m
9.7
Code Execution Prompt Injection Supply Chain Agent Framework
PraisonAI Patch: 4.5.121 CWE-78 1 6 ATLAS
MEDIUM

LangChain: f-string template injection exposes object internals

GHSA-926x-3r5x-gfhw
5.3
Data Extraction Prompt Injection Framework
langchain-core Patch: 0.3.84 CWE-20 4.4K 4 ATLAS
CRITICAL

Marimo: pre-auth RCE via terminal WebSocket

GHSA-2679-6mx9-h9xc
--
Auth Bypass Code Execution Framework
marimo Patch: 0.23.0 CWE-306 2.9K 5 ATLAS
MEDIUM EXPLOIT AVAIL

openai-realtime-ui: SSRF in API proxy endpoint

CVE-2026-5803
6.3
EPSS 0.1%
Data Extraction Auth Bypass API
CWE-918 3 ATLAS
HIGH

n8n-mcp: authenticated SSRF leaks cloud metadata

GHSA-4ggg-h7ph-26qr
8.5
Data Extraction Auth Bypass Privacy Violation Agent Framework Plugin
n8n-mcp Patch: 2.47.4 CWE-918 16 5 ATLAS
MEDIUM

praisonaiagents: agent context leak + path traversal

GHSA-766v-q9x3-g744
6.5
Data Leakage Data Extraction Agent Framework
praisonaiagents Patch: 1.5.115 CWE-22 11 4 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial