AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
76
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 512 results — has patch Severity CVE ID Summary CVSS EPSS Package Date
MEDI CVE-2026-44550 open-webui: mass assignment enables cross-user folder injection 5.0 — open-webui May 8 CRIT CVE-2026-44551 open-webui: LDAP auth bypass — full account takeover 9.1 — open-webui May 8 HIGH CVE-2026-44721 open-webui: XSS in model descriptions steals session tokens 7.3 — open-webui May 8 HIGH GHSA-8g7g-hmwm-6rv2 n8n-mcp: path traversal + SSRF exposes n8n API keys 8.3 — n8n-mcp May 8 UNKN CVE-2026-44694 n8n-MCP: SSRF allows internal network access via webhook tools — 0.0% n8n-mcp May 8 MEDI CVE-2026-40610 BentoML: symlink traversal exfiltrates host secrets at build 5.5 — bentoml May 7 HIGH CVE-2026-44513 diffusers: trust_remote_code bypass enables silent RCE 8.8 — diffusers May 7 CRIT CVE-2026-44007 vm2: sandbox escape via nesting:true enables RCE 9.1 — vm2 May 7 HIGH GHSA-j7w6-vpvq-j3gm diffusers: silent RCE via None.py trust_remote_code bypass 8.8 — diffusers May 7 HIGH CVE-2026-44504 Aegra: cross-tenant IDOR hijacks user thread data — — aegra-api May 7 MEDI GHSA-cqmh-pcgr-q42f @axonflow/openclaw: credential exposure via insecure file permissions 5.5 — @axonflow/openclaw May 6 HIGH CVE-2026-44334 praisonai: RCE via unpatched tool_override exec_module 8.4 0.0% praisonai May 6 HIGH CVE-2026-44335 praisonaiagents: SSRF via URL parser confusion bypass — 0.0% praisonaiagents May 6 HIGH CVE-2026-44244 GitPython: git config injection enables hook RCE 7.8 0.0% GitPython May 6 MEDI CVE-2026-44223 vLLM: speculative decoding DoS via penalty params 6.5 — vllm May 6 HIGH CVE-2026-42557 JupyterLab: one-click RCE via notebook HTML cell output — — notebook May 6 HIGH CVE-2026-33079 mistune: ReDoS exposes Jupyter/AI services to DoS — 0.0% mistune May 6 MEDI CVE-2026-44222 vLLM: token injection DoS via multimodal placeholders 6.5 — vllm May 5 HIGH CVE-2026-42266 JupyterLab: Extension allow-list bypass enables privesc 8.8 — jupyterlab May 5 HIGH GHSA-cwj3-vqpp-pmxr openclaw: Model bypasses authz to persist unsafe config 8.8 — openclaw May 5 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial