AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

226

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1625 results
Severity CVE ID Summary CVSS EPSS Package Date
HIGH E CVE-2026-39306 PraisonAI: recipe path traversal allows arbitrary file write 7.3 0.1% PraisonAI Apr 6 CRIT E CVE-2026-39305 PraisonAI: path traversal enables arbitrary file write/RCE 9.0 0.1% PraisonAI Apr 6 HIGH E CVE-2026-39307 PraisonAI: Zip Slip enables arbitrary file write / RCE 8.1 0.1% PraisonAI Apr 6 MEDI CVE-2026-34425 OpenClaw: script preflight bypass enables unsafe exec 0.1% openclaw Apr 6 CRIT E CVE-2026-35022 Claude Code: OS command injection, credential theft 9.8 0.5% Apr 6 HIGH E CVE-2026-35021 Claude Code CLI: shell injection enables RCE 7.8 0.0% Apr 6 HIGH E CVE-2026-35020 Claude Code CLI: OS command injection via TERMINAL env 8.4 0.1% claude-code Apr 6 MEDI CVE-2026-35492 kedro-datasets: path traversal enables arbitrary file write 6.5 0.0% kedro-datasets Apr 6 UNKN E CVE-2026-34940 KubeAI: RCE via shell injection in Ollama startup probe 0.0% Apr 6 MEDI CVE-2026-5530 Ollama: SSRF in Model Pull API enables network pivot 6.3 0.0% Apr 5 HIGH CVE-2026-34511 OpenClaw: PKCE verifier leak enables OAuth token theft 0.0% openclaw Apr 4 MEDI GHSA-mvv8-v4jj-g47j Directus: cleartext storage exposes AI API keys 6.5 Apr 4 CRIT E CVE-2026-35216 Budibase: Unauthenticated RCE as root via webhook 9.1 0.6% Apr 4 HIGH E CVE-2026-35394 mobile-mcp: intent injection enables device control via AI agent 8.3 0.0% Apr 4 HIGH E CVE-2026-35044 BentoML: malicious bento archive RCE via Jinja2 SSTI 8.8 0.0% bentoml Apr 3 HIGH E CVE-2026-35043 BentoML: cmd injection RCE on cloud build infra 7.8 0.0% bentoml Apr 3 CRIT CVE-2026-35030 LiteLLM: auth bypass via JWT cache key collision 9.1 0.1% litellm Apr 3 UNKN E CVE-2026-35029 LiteLLM: auth bypass allows RCE and full takeover 14.9% litellm Apr 3 MEDI CVE-2026-34755 vLLM: OOM DoS via unbounded video frame decoding 6.5 0.1% vllm Apr 3 MEDI CVE-2026-34753 vLLM: SSRF in batch API exposes cloud metadata endpoints 5.4 0.0% vllm Apr 3

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial