AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,636
AI/ML CVEs Tracked
231
Critical
83
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 569 results — Medium severity Severity CVE ID Summary CVSS EPSS Package Date
MEDI CVE-2025-49592 n8n: open redirect enables phishing via login flow 5.4 0.2% n8n Jun 26 MEDI CVE-2025-52967 MLflow: unauthenticated SSRF in gateway proxy 5.8 0.2% mlflow Jun 23 MEDI E CVE-2025-48944 vLLM: input validation DoS crashes inference worker 6.5 0.3% vllm May 30 MEDI E CVE-2025-48943 vLLM: ReDoS crashes inference server via malformed regex 6.5 0.2% vllm May 30 MEDI E CVE-2025-48942 vLLM: DoS via malformed JSON schema guided param 6.5 0.2% vllm May 30 MEDI E CVE-2025-48887 vLLM: ReDoS in tool parser causes service outage 6.5 0.3% vllm May 30 MEDI GHSA-j828-28rj-hfhp vllm: ReDoS in inference endpoints enables DoS 4.3 — vllm May 28 MEDI E CVE-2025-1194 transformers: ReDoS in GPT-NeoX Japanese tokenizer 6.5 0.1% transformers Apr 29 MEDI CVE-2025-46343 n8n: stored XSS enables account takeover 5.4 0.1% n8n Apr 29 MEDI E CVE-2025-3730 PyTorch: DoS via ctc_loss resource mishandling 5.5 0.1% pytorch Apr 16 MEDI GHSA-hf3c-wxg2-49q9 vLLM: DoS via unbounded XGrammar schema cache 6.5 — vllm Apr 15 MEDI CVE-2025-32381 xgrammar: unbounded grammar cache causes LLM server DoS 6.5 0.3% xgrammar Apr 9 MEDI GHSA-v7x6-rv5q-mhwc picklescan: bypass allows silent RCE in ML pipelines — — picklescan Apr 7 MEDI GHSA-fj43-3qmq-673f picklescan: numpy bypass enables RCE in ML model pipelines — — picklescan Apr 7 MEDI E CVE-2025-3121 PyTorch: memory corruption in JIT flatbuffer loader 5.5 0.1% pytorch Apr 2 MEDI CVE-2025-31843 OpenAI WP Plugin: broken access control on AI settings 4.3 0.3% — Apr 1 MEDI E CVE-2025-3001 PyTorch: lstm_cell memory corruption, local code exec 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-3000 PyTorch: memory corruption in torch.jit.script compiler 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-2999 PyTorch: memory corruption in RNN sequence unpacking 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-2998 PyTorch: memory corruption in RNN pad_packed_sequence 5.3 0.1% pytorch Mar 31 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial