AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 524 results — High severity

Severity CVE ID Summary CVSS EPSS Package Date

HIGH CVE-2026-22773 vLLM is an inference and serving engine for large... 7.5 0.0% vllm Jan 10 HIGH CVE-2026-22612 Fickling vulnerable to detection bypass due to... — 0.1% fickling Jan 9 HIGH CVE-2026-22609 Fickling has Static Analysis Bypass via... — 0.1% fickling Jan 9 HIGH CVE-2026-22608 Fickling vulnerable to use of ctypes and pydoc... — 0.0% fickling Jan 9 HIGH CVE-2026-22607 Fickling Blocklist Bypass: cProfile.run() — 0.1% fickling Jan 9 HIGH CVE-2026-22606 Fickling has a bypass via runpy.run_path() and... — 0.1% fickling Jan 9 HIGH GHSA-mcmc-2m55-j8jj vLLM introduced enhanced protection for... 8.8 — vllm Jan 8 HIGH GHSA-9726-w42j-3qjr picklescan has Arbitrary file read using... — — picklescan Jan 8 HIGH CVE-2026-0621 Anthropic's MCP TypeScript SDK versions up to and... 7.5 — — Jan 5 HIGH GHSA-46h3-79wf-xr6c Picklescan is vulnerable to RCE via missing... — — picklescan Dec 30 HIGH GHSA-955r-x9j8-7rhh Picklescan is vulnerable to RCE via missing... — — picklescan Dec 30 HIGH GHSA-rrxm-2pvv-m66x Picklescan is vulnerable to RCE via missing... — — picklescan Dec 30 HIGH GHSA-3329-ghmp-jmv5 Picklescan is vulnerable to RCE through missing... — — picklescan Dec 29 HIGH GHSA-x843-g5mx-g377 Picklescan is vulnerable to RCE through missing... — — picklescan Dec 29 HIGH GHSA-r8g5-cgf2-4m4m Picklescan missing detection when calling... — — picklescan Dec 29 HIGH GHSA-hgrh-qx5j-jfwx Picklescan Bypasses Unsafe Globals Check using... 8.8 — picklescan Dec 29 HIGH GHSA-vqmv-47xg-9wpr Picklescan missing detection when calling... — — picklescan Dec 29 HIGH GHSA-84r2-jw7c-4r5q Picklescan has Incomplete List of Disallowed... — — picklescan Dec 29 HIGH GHSA-4675-36f9-wf6r Picklescan does not block ctypes — — picklescan Dec 29 HIGH GHSA-m273-6v24-x4m4 Picklescan vulnerable to Arbitrary File Writing — — picklescan Dec 29 HIGH CVE-2025-67729 lmdeploy vulnerable to Arbitrary Code Execution... 8.8 0.1% — Dec 26 HIGH CVE-2025-68664 LangChain is a framework for building agents and... 8.2 0.0% langchain_core Dec 23 HIGH CVE-2025-68613 n8n is an open source workflow automation... 8.8 — n8n Dec 19 HIGH CVE-2025-68478 Langflow is a tool for building and deploying... 7.1 0.1% langflow Dec 19 HIGH CVE-2025-53000 nbconvert has an uncontrolled search path that... — 0.0% — Dec 18 HIGH CVE-2025-67748 Fickling has Code Injection vulnerability via... — 0.0% fickling Dec 15 HIGH CVE-2025-67747 Fickling has missing detection for marshal.loads... — 0.1% fickling Dec 15 HIGH CVE-2025-67644 LangGraph's SQLite is vulnerable to SQL injection... 7.3 0.0% — Dec 10 HIGH CVE-2025-33213 NVIDIA Merlin Transformers4Rec for Linux contains... 8.8 — — Dec 9 HIGH CVE-2025-65964 n8n is an open source workflow automation... 8.8 — n8n Dec 9 HIGH CVE-2025-34291 Langflow versions up to and including 1.6.9... 8.8 13.1% langflow Dec 5 HIGH CVE-2025-65958 Open WebUI vulnerable to Server-Side Request... 8.5 0.0% open-webui Dec 4 HIGH CVE-2025-66404 MCP Server Kubernetes is an MCP Server that can... 8.8 — — Dec 3 HIGH CVE-2025-66448 vLLM is an inference and serving engine for large... 8.8 0.2% vllm Dec 1 HIGH CVE-2025-65106 LangChain is a framework for building agents and... — 0.1% langchain-core Nov 21 HIGH CVE-2025-62609 MLX is an array framework for machine learning on... 7.5 0.1% mlx Nov 21 HIGH CVE-2025-12973 The S2B AI Assistant – ChatBot, ChatGPT, OpenAI,... 7.2 — — Nov 21 HIGH CVE-2025-62164 vLLM is an inference and serving engine for large... 8.8 0.1% vllm Nov 21 HIGH CVE-2025-64496 Open WebUI Affected by an External Model Server... 7.3 0.2% open-webui Nov 7 HIGH CVE-2025-64495 Open WebUI vulnerable to Stored DOM XSS via... 8.7 0.0% open-webui Nov 7 HIGH CVE-2025-64439 LangGraph Checkpoint affected by RCE in "json"... — 0.8% — Nov 5 HIGH CVE-2025-62726 n8n is an open source workflow automation... 8.8 — n8n Oct 30 HIGH CVE-2025-64104 LangGraph SQLite Checkpoint Filter Key SQL... 7.3 0.1% — Oct 29 HIGH CVE-2025-8709 A SQL injection vulnerability exists in the... 7.3 0.0% — Oct 26 HIGH CVE-2025-7707 llama-index has Insecure Temporary File 7.1 0.0% llama-index Oct 13 HIGH CVE-2025-6242 A Server-Side Request Forgery (SSRF)... 7.1 0.0% vllm Oct 7 HIGH CVE-2025-61784 LLaMA-Factory is a tuning library for large... 8.1 0.1% llamafactory Oct 7 HIGH CVE-2025-59425 vLLM is an inference and serving engine for large... 7.5 0.4% vllm Oct 7 HIGH CVE-2025-6985 The HTMLSectionSplitter class in... 7.5 0.2% — Oct 6 HIGH CVE-2025-7647 llama-index-core insecurely handles temporary... 7.3 0.0% llama-index-core Sep 27

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial