AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

2

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 1140 results

Severity CVE ID Summary CVSS EPSS Package Date

UNKN CVE-2026-2492 TensorFlow HDF5 Library Uncontrolled Search Path... — — — Feb 20 HIGH CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory... 8.1 9.2% mlflow Feb 20 HIGH CVE-2026-2472 Google Cloud Vertex AI SDK affected by Stored... — 0.1% — Feb 20 MEDI CVE-2026-27482 Ray dashboard DELETE endpoints allow... 5.9 0.0% ray Feb 20 LOW GHSA-83pf-v6qq-pwmr Fickling has a detection bypass via stdlib... — — fickling Feb 20 HIGH CVE-2026-26286 SillyTavern is a locally installed user interface... 8.5 — — Feb 19 CRIT CVE-2026-26030 Microsoft Semantic Kernel InMemoryVectorStore... 10.0 0.1% semantic-kernel Feb 19 MEDI CVE-2025-12343 A flaw was found in FFmpeg’s TensorFlow backend... 5.5 — — Feb 18 HIGH GHSA-97f8-7cmv-76j2 Picklescan (scan_pytorch) Bypass via dynamic eval... — — picklescan Feb 18 CRIT CVE-2026-2654 A weakness has been identified in huggingface... 9.8 — smolagents Feb 18 HIGH CVE-2026-1669 Arbitrary file read in the model loading... 7.5 0.0% keras Feb 11 MEDI CVE-2026-26019 LangChain is a framework for building LLM-powered... 4.1 — langchain_community Feb 11 LOW CVE-2026-26013 LangChain is a framework for building agents and... 3.7 0.0% langchain_core Feb 10 MEDI CVE-2026-25631 n8n is an open source workflow automation... 6.5 — n8n Feb 6 CRIT CVE-2026-25592 Semantic Kernel is an SDK used to build,... 9.9 0.1% semantic-kernel Feb 6 HIGH CVE-2026-25580 Pydantic AI is a Python agent framework for... 8.6 0.0% pydantic-ai Feb 6 MEDI CVE-2026-25640 Pydantic AI is a Python agent framework for... 5.4 0.0% pydantic-ai Feb 6 HIGH CVE-2026-21893 n8n is an open source workflow automation... 7.2 — n8n Feb 4 CRIT CVE-2026-25115 n8n is an open source workflow automation... 9.9 — n8n Feb 4 HIGH CVE-2026-25056 n8n is an open source workflow automation... 8.8 — n8n Feb 4 HIGH CVE-2026-25055 n8n is an open source workflow automation... 8.1 — n8n Feb 4 MEDI CVE-2026-25054 n8n is an open source workflow automation... 5.4 — n8n Feb 4 CRIT CVE-2026-25053 n8n is an open source workflow automation... 9.9 — n8n Feb 4 CRIT CVE-2026-25052 n8n is an open source workflow automation... 9.9 — n8n Feb 4 MEDI CVE-2026-25051 n8n is an open source workflow automation... 5.4 — n8n Feb 4 CRIT CVE-2026-25049 n8n is an open source workflow automation... 9.9 — n8n Feb 4 HIGH CVE-2025-61917 n8n is an open source workflow automation... 7.7 — n8n Feb 4 HIGH CVE-2026-1777 SageMaker Python SDK has Exposed HMAC 7.2 0.0% sagemaker Feb 2 MEDI CVE-2026-1778 SageMaker Python SDK has Insecure TLS... 5.9 0.0% sagemaker Feb 2 CRIT CVE-2026-22778 vLLM is an inference and serving engine for large... 9.8 0.1% vllm Feb 2 MEDI GHSA-m7j5-r2p5-c39r picklescan vulnerable to arbitrary file create... — — picklescan Feb 2 HIGH GHSA-9m3x-qqw2-h32h picklescan missing detection by simple... — — picklescan Feb 2 CRIT CVE-2026-25481 Langroid has WAF Bypass Leading to RCE in... — 0.0% — Feb 2 MEDI CVE-2025-6208 llama-index-core vulnerable to Uncontrolled... 5.3 0.0% llama-index-core Feb 2 HIGH CVE-2026-1117 Lollms has an Improper Access Control... 8.2 0.1% lollms Feb 2 HIGH CVE-2026-0599 A vulnerability in... 7.5 0.2% — Feb 2 HIGH CVE-2025-10279 In mlflow version 2.20.3, the temporary directory... 7.0 0.0% mlflow Feb 2 CRIT CVE-2026-25130 CAI find_file Agent Tool has Command Injection... 9.7 0.0% — Jan 30 LOW CVE-2026-25211 Llama Stack exposes secret in initialization log 3.2 0.0% — Jan 30 HIGH CVE-2026-24780 AutoGPT is a platform that allows users to... 8.8 0.1% — Jan 29 MEDI GHSA-gpx9-96j6-pp87 TaskWeaver has Protection Mechanism Failure and... 6.5 — — Jan 28 HIGH CVE-2026-24779 vLLM is an inference and serving engine for large... 7.1 0.0% vllm Jan 27 HIGH CVE-2026-24747 PyTorch is a Python package that provides tensor... 8.8 0.0% pytorch Jan 27 CRIT CVE-2026-1470 n8n contains a critical Remote Code Execution... 9.9 — n8n Jan 27 MEDI CVE-2026-24123 BentoML is a Python library for building online... 6.5 0.0% bentoml Jan 26 CRIT CVE-2025-13374 The Kalrav AI Agent plugin for WordPress is... 9.8 — — Jan 24 UNKN CVE-2026-0772 Langflow Disk Cache Deserialization of Untrusted... — — langflow Jan 23 UNKN CVE-2026-0771 Langflow PythonFunction Code Injection Remote... — — langflow Jan 23 HIGH CVE-2026-0770 Langflow exec_globals Inclusion of Functionality... — 11.4% langflow Jan 23 UNKN CVE-2026-0769 Langflow eval_custom_component_code Eval... — — langflow Jan 23

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial