AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

78

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 512 results — has patch
HIGH

openclaw: SSRF in channel extensions hits internal network

CVE-2026-35629
--
EPSS 0.0%
Data Extraction Auth Bypass Supply Chain Agent Plugin
openclaw Patch: 2026.3.28 CWE-918 4 4 ATLAS 1 incident
MEDIUM

openclaw: auth bypass exposes agent session history via HTTP

CVE-2026-35657
--
EPSS 0.0%
Auth Bypass Data Extraction Agent API
openclaw Patch: 2026.3.25 CWE-639 4 3 ATLAS 1 incident
UNKNOWN

Langflow: IDOR exposes flows and plaintext API keys

CVE-2026-34046
--
EPSS 0.0%
Auth Bypass Data Extraction Data Leakage Framework Agent API
langflow Patch: 1.5.1 CWE-639 6 ATLAS
UNKNOWN

Langflow: server-side RCE via LLM-generated code exec

CVE-2026-33873
--
EPSS 0.0%
Code Execution Prompt Injection Framework Agent
langflow Patch: 1.9.0 CWE-94 6 ATLAS
HIGH EXPLOIT AVAIL

langchain-core: path traversal exposes host secrets via prompt config

CVE-2026-34070
7.5
EPSS 0.0%
Data Extraction Data Leakage Framework
langchain-core Patch: 1.2.22 CWE-22 4.3K 5 ATLAS
MEDIUM

n8n: stored XSS via malicious OAuth2 Authorization URL

GHSA-364x-8g5j-x2pr
5.4
Code Execution Data Extraction Social Engineering Agent Framework Plugin
n8n Patch: 2.8.0 CWE-79 16 7 ATLAS
MEDIUM

n8n: Stored XSS in Chat Trigger via CSS injection

GHSA-3c7f-5hgj-h279
5.4
Code Execution Data Extraction Agent Framework
n8n Patch: 1.123.27 CWE-79 16 6 ATLAS
MEDIUM

n8n: stored XSS enables phishing via Form Node

GHSA-w673-8fjw-457c
4.1
Social Engineering Data Extraction Agent Framework
n8n Patch: 2.12.0 CWE-79 16 4 ATLAS
MEDIUM

n8n: Stored XSS in Form Trigger enables phishing

GHSA-q4fm-pjq6-m63g
5.4
Social Engineering Data Extraction Agent Framework
n8n Patch: 2.11.2 CWE-79 16 4 ATLAS
LOW EXPLOIT AVAIL

Open WebUI: IDOR exposes AI memories and private files

CVE-2026-29071
3.1
EPSS 0.0%
Auth Bypass Data Extraction Privacy Violation RAG Agent Framework
open-webui Patch: 0.8.6 CWE-639 5 ATLAS
MEDIUM EXPLOIT AVAIL

open-webui: missing authz allows cross-KB file deletion

CVE-2026-29070
5.4
EPSS 0.0%
Auth Bypass DoS RAG Framework
open-webui Patch: 0.8.6 CWE-862 4 ATLAS
HIGH EXPLOIT AVAIL

Open WebUI: BOLA enables RAG poisoning via file overwrite

CVE-2026-28788
7.1
EPSS 0.0%
Auth Bypass Model Poisoning Prompt Injection RAG API Framework
open-webui Patch: 0.8.6 CWE-639 7 ATLAS
MEDIUM EXPLOIT AVAIL

Open WebUI: path traversal leaks server filesystem path

CVE-2026-28786
4.3
EPSS 0.0%
Data Extraction Data Leakage Framework API
open-webui Patch: 0.8.6 CWE-22 4 ATLAS
HIGH EXPLOIT AVAIL

BentoML: command injection in bentofile.yaml containerize

CVE-2026-33744
7.8
EPSS 0.0%
Code Execution Supply Chain Framework
bentoml Patch: 1.4.37 CWE-94 22 5 ATLAS
HIGH

vLLM: trust_remote_code bypass enables RCE

CVE-2026-27893
8.8
EPSS 0.0%
Code Execution Supply Chain Inference Framework Model
vllm Patch: 0.18.0 CWE-693 126 5 ATLAS
MEDIUM

Streamlit: SSRF leaks NTLMv2 creds via UNC path

CVE-2026-33682
4.7
EPSS 0.0%
Data Leakage Auth Bypass Framework
Streamlit Patch: 1.54.0 CWE-918 2.8K 4 ATLAS
MEDIUM

n8n: LDAP injection enables auth bypass in workflows

CVE-2026-33751
4.8
EPSS 0.0%
Auth Bypass Data Extraction Agent Framework
n8n Patch: 1.123.27 CWE-90 16 3 ATLAS
CRITICAL

n8n: stored XSS enables credential theft via workflow

CVE-2026-33749
9.0
EPSS 0.0%
Data Extraction Auth Bypass Code Execution Agent Framework API
n8n Patch: 1.123.27 CWE-79 16 8 ATLAS
HIGH

n8n: SSH MitM enables malicious workflow injection

CVE-2026-33724
7.4
EPSS 0.0%
Supply Chain Auth Bypass Agent Framework
n8n Patch: 2.5.0 CWE-639 16 4 ATLAS
MEDIUM

n8n: secrets vault bypass exposes credentials to low-priv users

CVE-2026-33722
5.3
EPSS 0.0%
Auth Bypass Data Extraction Data Leakage Agent Framework API
n8n Patch: 1.123.23 CWE-863 16 5 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial