AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,625

AI/ML CVEs Tracked

226

Critical

95

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1625 results
MEDIUM

ltiauthenticator: OAuth nonce leak causes server DoS

CVE-2026-34052
5.9
EPSS 0.1%
DoS Framework
CWE-401 3 ATLAS
MEDIUM

JupyterHub: open redirect enables post-login phishing

CVE-2026-33709
--
EPSS 0.0%
Social Engineering Auth Bypass Framework
CWE-601 4 ATLAS
HIGH

oauthenticator: auth bypass enables JupyterHub account takeover

CVE-2026-33175
8.8
EPSS 0.1%
Auth Bypass Framework
CWE-287 4 ATLAS
CRITICAL EXPLOIT AVAIL

MLflow: auth bypass in job API enables unauthenticated RCE

CVE-2026-0545
9.1
EPSS 5.5%
Auth Bypass Code Execution DoS Framework Training Data
mlflow CWE-306 624 5 ATLAS
MEDIUM

vLLM: DoS via unbounded n parameter causes OOM crash

CVE-2026-34756
6.5
EPSS 0.0%
DoS Inference API
vllm Patch: 0.19.0 CWE-770 127 4 ATLAS
HIGH

Ajenti: missing authz lets any user install packages

CVE-2026-35175
--
EPSS 0.0%
Auth Bypass Supply Chain Code Execution Framework Plugin
CWE-862 4 ATLAS
MEDIUM

OpenClaw: SSRF in marketplace fetch hits internal AI infra

GHSA-9q7v-8mr7-g23p
--
Supply Chain Data Extraction Auth Bypass Plugin Inference Agent
openclaw Patch: 2026.3.31 CWE-918 4 4 ATLAS
MEDIUM

vLLM: audio downmix mismatch enables adversarial input

CVE-2026-34760
5.9
EPSS 0.1%
Adversarial Examples Supply Chain Inference Framework
CWE-20 4 ATLAS
HIGH

onnx: TOCTOU symlink following enables arbitrary file write

GHSA-q56x-g2fj-4rj6
7.1
Supply Chain Code Execution Framework Model
onnx Patch: 1.21.0 CWE-22 1.2K 4 ATLAS
HIGH EXPLOIT AVAIL

praisonaiagents: SSRF leaks cloud IAM credentials

CVE-2026-34954
8.6
EPSS 0.0%
Prompt Injection Data Extraction Agent Framework
praisonaiagents Patch: 1.5.95 CWE-918 11 5 ATLAS
HIGH EXPLOIT AVAIL

PraisonAI: sandbox escape via shell=True blocklist bypass

CVE-2026-34955
8.8
EPSS 0.0%
Code Execution Prompt Injection Auth Bypass Agent Framework Plugin
praisonai Patch: 4.5.97 CWE-78 1 6 ATLAS 1 incident
HIGH EXPLOIT AVAIL

PraisonAI: SSRF via api_base steals cloud IAM credentials

CVE-2026-34936
7.7
EPSS 0.0%
Data Extraction Auth Bypass Supply Chain Framework API Agent
praisonai Patch: 4.5.90 CWE-918 1 5 ATLAS
HIGH EXPLOIT AVAIL

PraisonAI: OS command injection via run_python() shell escape

CVE-2026-34937
7.8
EPSS 0.0%
Code Execution Prompt Injection Auth Bypass Agent Framework Plugin
praisonaiagents Patch: 1.5.90 CWE-78 11 6 ATLAS 1 incident
CRITICAL EXPLOIT AVAIL

praisonaiagents: sandbox bypass enables full host RCE

CVE-2026-34938
10.0
EPSS 0.0%
Code Execution Prompt Injection Supply Chain Agent Framework Plugin
praisonaiagents Patch: 1.5.90 CWE-693 11 7 ATLAS
HIGH EXPLOIT AVAIL

Open WebUI: access control bypass leaks Tool Valve API keys

CVE-2026-34222
7.7
EPSS 0.0%
Auth Bypass Data Extraction Agent Plugin Framework
open-webui Patch: 0.8.11 CWE-285 5 ATLAS
MEDIUM EXPLOIT AVAIL

ONNX: symlink traversal reads host files via model loading

CVE-2026-34447
5.5
EPSS 0.0%
Supply Chain Data Extraction Framework Model
onnx Patch: 1.21.0 CWE-22 1.2K 5 ATLAS
MEDIUM

ONNX: hardlink path traversal leaks sensitive files

CVE-2026-34446
4.7
EPSS 0.0%
Supply Chain Data Extraction Framework Model
onnx Patch: 1.21.0 CWE-22 1.2K 4 ATLAS
HIGH

ONNX: property overwrite via crafted model file

CVE-2026-34445
8.6
EPSS 0.2%
Supply Chain DoS Code Execution Framework Model Inference
onnx Patch: 1.21.0 CWE-20 1.2K 5 ATLAS
UNKNOWN EXPLOIT AVAIL

ONNX: symlink path traversal allows arbitrary file read

CVE-2026-27489
--
EPSS 0.1%
Supply Chain Data Extraction Framework Model
onnx Patch: 1.21.0 CWE-23 1.2K 5 ATLAS
MEDIUM

Anthropic SDK: TOCTOU symlink escape in async memory tool

CVE-2026-34452
--
EPSS 0.0%
Code Execution Data Extraction Auth Bypass Framework Agent API
anthropic Patch: 0.87.0 CWE-59 4.8K 5 ATLAS 17 incidents

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial