AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

226

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1625 results
HIGH EXPLOIT AVAIL

PraisonAI: recipe path traversal allows arbitrary file write

CVE-2026-39306
7.3
EPSS 0.1%
Supply Chain Code Execution Agent Framework
PraisonAI Patch: 4.5.113 CWE-22 1 6 ATLAS
CRITICAL EXPLOIT AVAIL

PraisonAI: path traversal enables arbitrary file write/RCE

CVE-2026-39305
9.0
EPSS 0.1%
Code Execution Prompt Injection Supply Chain Agent Framework
PraisonAI Patch: 4.5.113 1 5 ATLAS
HIGH EXPLOIT AVAIL

PraisonAI: Zip Slip enables arbitrary file write / RCE

CVE-2026-39307
8.1
EPSS 0.1%
Supply Chain Code Execution Agent Framework
PraisonAI Patch: 4.5.113 CWE-23 1 5 ATLAS
MEDIUM

OpenClaw: script preflight bypass enables unsafe exec

CVE-2026-34425
--
EPSS 0.1%
Auth Bypass Code Execution Agent Plugin
openclaw Patch: 2026.4.2 CWE-184 4 4 ATLAS 1 incident
CRITICAL EXPLOIT AVAIL

Claude Code: OS command injection, credential theft

CVE-2026-35022
9.8
EPSS 0.5%
Code Execution Data Extraction Supply Chain Agent API Framework
CWE-78 8 ATLAS
HIGH EXPLOIT AVAIL

Claude Code CLI: shell injection enables RCE

CVE-2026-35021
7.8
EPSS 0.0%
Code Execution Supply Chain Agent Framework
CWE-78 5 ATLAS
HIGH EXPLOIT AVAIL

Claude Code CLI: OS command injection via TERMINAL env

CVE-2026-35020
8.4
EPSS 0.1%
Code Execution Supply Chain Agent API
claude-code CWE-78 5 ATLAS
MEDIUM

kedro-datasets: path traversal enables arbitrary file write

CVE-2026-35492
6.5
EPSS 0.0%
Supply Chain Model Poisoning Code Execution Framework Training Data
kedro-datasets Patch: 9.3.0 CWE-22 2.8K 3 ATLAS
UNKNOWN EXPLOIT AVAIL

KubeAI: RCE via shell injection in Ollama startup probe

CVE-2026-34940
--
EPSS 0.0%
Code Execution Inference Framework
CWE-78 3 ATLAS
MEDIUM

Ollama: SSRF in Model Pull API enables network pivot

CVE-2026-5530
6.3
EPSS 0.0%
Data Extraction Privacy Violation Inference API
CWE-918 4 ATLAS
HIGH

OpenClaw: PKCE verifier leak enables OAuth token theft

CVE-2026-34511
--
EPSS 0.0%
Auth Bypass Data Extraction Agent API
openclaw Patch: 2026.4.2 CWE-345 4 4 ATLAS
MEDIUM

Directus: cleartext storage exposes AI API keys

GHSA-mvv8-v4jj-g47j
6.5
Data Leakage Data Extraction Auth Bypass API Framework Agent
CWE-200 6 ATLAS
CRITICAL EXPLOIT AVAIL

Budibase: Unauthenticated RCE as root via webhook

CVE-2026-35216
9.1
EPSS 0.6%
Code Execution Auth Bypass Data Extraction Framework Agent
CWE-78 8 ATLAS
HIGH EXPLOIT AVAIL

mobile-mcp: intent injection enables device control via AI agent

CVE-2026-35394
8.3
EPSS 0.0%
Prompt Injection Code Execution Privacy Violation Agent Plugin
CWE-939 6 ATLAS
HIGH EXPLOIT AVAIL

BentoML: malicious bento archive RCE via Jinja2 SSTI

CVE-2026-35044
8.8
EPSS 0.0%
Supply Chain Code Execution Framework
bentoml Patch: 1.4.38 CWE-1336 23 5 ATLAS
HIGH EXPLOIT AVAIL

BentoML: cmd injection RCE on cloud build infra

CVE-2026-35043
7.8
EPSS 0.0%
Supply Chain Code Execution Framework
bentoml Patch: 1.4.38 CWE-78 23 5 ATLAS
CRITICAL

LiteLLM: auth bypass via JWT cache key collision

CVE-2026-35030
9.1
EPSS 0.1%
Auth Bypass Data Extraction API Framework Inference
litellm Patch: 1.83.0 CWE-287 4 4 ATLAS
UNKNOWN EXPLOIT AVAIL

LiteLLM: auth bypass allows RCE and full takeover

CVE-2026-35029
--
EPSS 14.9%
Auth Bypass Code Execution Data Extraction Framework API Inference
litellm Patch: 1.83.0 CWE-863 4 6 ATLAS
MEDIUM

vLLM: OOM DoS via unbounded video frame decoding

CVE-2026-34755
6.5
EPSS 0.1%
DoS Framework Inference API
vllm Patch: 0.19.0 CWE-770 127 3 ATLAS
MEDIUM

vLLM: SSRF in batch API exposes cloud metadata endpoints

CVE-2026-34753
5.4
EPSS 0.0%
Data Extraction Auth Bypass Framework Inference
vllm Patch: 0.19.0 CWE-918 127 5 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial