AI Security Threat Feed

Data Extraction Auth Bypass Data Leakage Framework Agent

langgraph-checkpoint-sqlite: SQL Injection exposes database

langgraph-checkpoint-sqlite Patch: 2.0.11 CWE-89 3.1K 5 ATLAS

CRITICAL EXPLOIT AVAIL

keras: Deserialization enables RCE

Code Execution Supply Chain Framework Model

keras Patch: 3.11.3 CWE-502 1.5K 5 ATLAS

HIGH

llama-index: world-writable NLTK dir allows local tampering

DoS Supply Chain Model Poisoning Framework RAG

llama-index Patch: 0.13.0 CWE-377 229 4 ATLAS

DoS Framework Inference API

vllm: DoS via Jinja template injection in chat API

CVE-2025-61620

6.5

7mo ago

vllm Patch: 0.11.0 CWE-20 126 5 ATLAS

Data Extraction Auth Bypass Inference Framework

vLLM: SSRF in media loader exposes internal network

vllm Patch: 0.11.0 CWE-601 126 4 ATLAS

Data Extraction Privacy Violation Code Execution Framework API Training Data

LLaMA-Factory: SSRF+LFI in multimodal chat API

llamafactory Patch: 0.9.4 CWE-918 1 6 ATLAS

Data Extraction Supply Chain Data Leakage Framework RAG Agent

langchain-text-splitters: XXE enables arbitrary file read

langchain-text-splitters Patch: 0.3.9 CWE-611 2.6K 5 ATLAS

MEDIUM EXPLOIT AVAIL

clearml: path traversal in safe_extract → RCE risk

Supply Chain Code Execution Framework Training Data

clearml Patch: 2.0.2 CWE-22 25 4 ATLAS

Data Extraction Model Poisoning Supply Chain Framework RAG

llama-index-core: insecure /tmp dir, model theft risk

llama-index-core Patch: 0.13.0 CWE-378 1.1K 5 ATLAS

Picklescan: CRC bypass hides malicious pickle in ZIP

picklescan Patch: 0.0.31 CWE-693 3 5 ATLAS 1 incident

PickleScan: subclass bypass enables malicious model RCE

picklescan Patch: 0.0.31 CWE-693 3 5 ATLAS 1 incident

Code Execution Supply Chain Framework Training Data

MONAI: unsafe pickle deserialization RCE in data pipeline

monai Patch: 1.5.1 CWE-502 105 5 ATLAS

Code Execution Supply Chain Framework Training Data

MONAI: unsafe deserialization in CheckpointLoader allows RCE

monai Patch: 1.5.1 CWE-502 105 5 ATLAS

Supply Chain Code Execution Framework

MONAI: path traversal allows arbitrary file write

monai Patch: 1.5.1 CWE-22 105 4 ATLAS

MEDIUM EXPLOIT AVAIL

xgrammar: DoS via oversized JSON schema grammar parsing

CVE-2025-58446

EPSS 0.1%

xgrammar Patch: 0.1.24 CWE-770 152 3 ATLAS

DoS Inference Framework

HIGH EXPLOIT AVAIL SCANNER

EverNoteLoader: XXE exposes host files in LangChain

Data Extraction Data Leakage Framework RAG

langchain-community Patch: 0.3.27 CWE-200 1.2K 4 ATLAS

picklescan: scanner bypass enables model RCE

GHSA-q77w-mwjj-7mqx

Supply Chain Code Execution Framework Model

picklescan Patch: 0.0.30 3 6 ATLAS

picklescan: scanner bypass enables RCE via ML model files

GHSA-49gj-c84q-6qm9

picklescan Patch: 0.0.30 3 5 ATLAS

picklescan: scan bypass allows silent RCE via ML models

GHSA-9w88-8rmg-7g2p

picklescan Patch: 0.0.30 3 6 ATLAS

picklescan: detection bypass allows undetected RCE in ML models

GHSA-fqq6-7vqf-w3fg