AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
MEDIUM EXPLOIT AVAIL

ExecuTorch: integer overflow enables RCE via model loading

CVE-2025-54952
--
EPSS 0.4%
Code Execution Supply Chain Framework Inference Model
executorch CWE-680 2 4 ATLAS
CRITICAL EXPLOIT AVAIL

Azure OpenAI: SSRF EoP, no auth required (CVSS 10)

CVE-2025-53767
10.0
EPSS 0.5%
Auth Bypass Data Extraction Privacy Violation API Inference
azure_openai 13.8K 6 ATLAS
MEDIUM EXPLOIT AVAIL

Ollama: arbitrary file deletion via /api/pull

CVE-2025-44779
6.6
EPSS 0.0%
DoS Data Leakage Inference Framework
ollama 1.5K 4 ATLAS
MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in TF-to-PyTorch weight converter

CVE-2025-5197
5.3
EPSS 0.0%
DoS Supply Chain Framework
transformers CWE-1333 7.9K 4 ATLAS
CRITICAL EXPLOIT AVAIL

ChatGLM-Webui: arbitrary file read, no auth required

CVE-2025-45150
9.8
EPSS 0.1%
Data Extraction Auth Bypass Framework API
langchain-chatglm-webui 2.6K 5 ATLAS
HIGH

WP Contest Gallery: Stored XSS exposes OpenAI API creds

CVE-2025-7725
7.2
EPSS 0.3%
Data Extraction Code Execution Plugin API
4 ATLAS
MEDIUM

ms-swift: RCE via pickle deserialization in adapter models

GHSA-r54c-2xmf-2cf3
--
Supply Chain Code Execution Model Poisoning Framework Model Training Data
CWE-502 6 ATLAS
CRITICAL EXPLOIT AVAIL

BentoML: unauthenticated SSRF via file upload URLs

CVE-2025-54381
9.9
EPSS 0.7%
Supply Chain Data Extraction Auth Bypass Framework Inference API
bentoml CWE-918 23 5 ATLAS
CRITICAL EXPLOIT AVAIL

LangChain GmailToolkit: indirect prompt injection to RCE

CVE-2025-46059
9.8
EPSS 0.3%
Prompt Injection Code Execution Data Extraction Framework Agent Plugin
6 ATLAS
CRITICAL EXPLOIT AVAIL

smolagents: sandbox escape enables unauthenticated RCE

CVE-2025-5120
10.0
EPSS 0.4%
Code Execution Supply Chain Data Leakage Framework Agent
smolagents CWE-94 88 5 ATLAS
MEDIUM

OpenAI Codex CLI: sandbox bypass via ripgrep flag abuse

CVE-2025-54558
4.1
EPSS 0.0%
Code Execution Auth Bypass Agent Plugin
4 ATLAS
MEDIUM

WordPress AI Engine: SSRF leaks files via OpenAI API

CVE-2025-7780
6.5
EPSS 0.1%
Data Extraction Data Leakage Auth Bypass Plugin API
4 ATLAS
MEDIUM EXPLOIT AVAIL

Ollama: auth token hijack via crafted WWW-Authenticate

CVE-2025-51471
6.9
EPSS 0.0%
Auth Bypass Data Extraction Supply Chain Inference API Model
ollama 1.5K 5 ATLAS
MEDIUM EXPLOIT AVAIL

Dagster: path traversal exposes arbitrary file read via gRPC

CVE-2025-51481
6.6
EPSS 0.0%
Data Extraction Data Leakage Framework Training Data
CWE-22 5 ATLAS
MEDIUM

DSpace: XXE injection enables server file disclosure

CVE-2025-53621
6.9
EPSS 0.1%
Data Extraction Supply Chain API Training Data
5 ATLAS
MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in DonutProcessor causes DoS

CVE-2025-3933
5.3
EPSS 0.1%
DoS Framework Inference
transformers CWE-1333 7.9K 4 ATLAS
MEDIUM EXPLOIT AVAIL

Contest Gallery WP Plugin: Stored XSS in OpenAI integration

CVE-2025-6716
6.4
EPSS 0.2%
Code Execution Data Leakage Plugin API
4 ATLAS
MEDIUM EXPLOIT AVAIL

OpenAI Operator: fullscreen spoofing captures credentials

CVE-2025-7021
6.5
EPSS 0.2%
Social Engineering Privacy Violation Agent API
operator 13.8K 6 ATLAS
HIGH

lollms: timing attack enables credential enumeration

CVE-2025-6386
7.5
EPSS 0.3%
Auth Bypass Data Extraction Framework Agent
lollms CWE-203 4 ATLAS
LOW EXPLOIT AVAIL

Transformers: URL validation bypass exposes image pipeline

CVE-2025-3777
3.5
EPSS 0.1%
Data Leakage Social Engineering Framework
transformers CWE-20 7.9K 4 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial