AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,624

AI/ML CVEs Tracked

226

Critical

94

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1624 results
UNKNOWN

Langflow: IDOR exposes flows and plaintext API keys

CVE-2026-34046
--
EPSS 0.0%
Auth Bypass Data Extraction Data Leakage Framework Agent API
langflow Patch: 1.5.1 CWE-639 6 ATLAS
UNKNOWN

Langflow: server-side RCE via LLM-generated code exec

CVE-2026-33873
--
EPSS 0.0%
Code Execution Prompt Injection Framework Agent
langflow Patch: 1.9.0 CWE-94 6 ATLAS
MEDIUM

DOMPurify: mXSS bypass achieves XSS via parse-context switch

GHSA-h8r8-wccr-v5f2
--
Code Execution Supply Chain Framework
CWE-79 5 ATLAS
HIGH EXPLOIT AVAIL

langchain-core: path traversal exposes host secrets via prompt config

CVE-2026-34070
7.5
EPSS 0.0%
Data Extraction Data Leakage Framework
langchain-core Patch: 1.2.22 CWE-22 4.4K 5 ATLAS
HIGH EXPLOIT AVAIL

@mobilenext/mobile-mcp: path traversal via AI agent tool

CVE-2026-33989
8.1
EPSS 0.0%
Prompt Injection Code Execution Supply Chain Agent Plugin
CWE-22 6 ATLAS
MEDIUM

n8n: stored XSS via malicious OAuth2 Authorization URL

GHSA-364x-8g5j-x2pr
5.4
Code Execution Data Extraction Social Engineering Agent Framework Plugin
n8n Patch: 2.8.0 CWE-79 16 7 ATLAS
MEDIUM

n8n: Stored XSS in Chat Trigger via CSS injection

GHSA-3c7f-5hgj-h279
5.4
Code Execution Data Extraction Agent Framework
n8n Patch: 1.123.27 CWE-79 16 6 ATLAS
MEDIUM

n8n: stored XSS enables phishing via Form Node

GHSA-w673-8fjw-457c
4.1
Social Engineering Data Extraction Agent Framework
n8n Patch: 2.12.0 CWE-79 16 4 ATLAS
MEDIUM

n8n: Stored XSS in Form Trigger enables phishing

GHSA-q4fm-pjq6-m63g
5.4
Social Engineering Data Extraction Agent Framework
n8n Patch: 2.11.2 CWE-79 16 4 ATLAS
MEDIUM EXPLOIT AVAIL

smolagents: code injection via incomplete sandbox fix

CVE-2026-4963
6.3
EPSS 0.0%
Code Execution Supply Chain Agent Framework
smolagents CWE-74 88 5 ATLAS
HIGH EXPLOIT AVAIL

MLflow: broken access control exposes experiment traces

CVE-2025-15381
8.1
EPSS 0.0%
Auth Bypass Data Extraction Data Leakage Framework Training Data
mlflow CWE-200 624 5 ATLAS
LOW EXPLOIT AVAIL

Open WebUI: IDOR exposes AI memories and private files

CVE-2026-29071
3.1
EPSS 0.0%
Auth Bypass Data Extraction Privacy Violation RAG Agent Framework
open-webui Patch: 0.8.6 CWE-639 5 ATLAS
MEDIUM EXPLOIT AVAIL

open-webui: missing authz allows cross-KB file deletion

CVE-2026-29070
5.4
EPSS 0.0%
Auth Bypass DoS RAG Framework
open-webui Patch: 0.8.6 CWE-862 4 ATLAS
HIGH EXPLOIT AVAIL

Open WebUI: BOLA enables RAG poisoning via file overwrite

CVE-2026-28788
7.1
EPSS 0.0%
Auth Bypass Model Poisoning Prompt Injection RAG API Framework
open-webui Patch: 0.8.6 CWE-639 7 ATLAS
MEDIUM EXPLOIT AVAIL

Open WebUI: path traversal leaks server filesystem path

CVE-2026-28786
4.3
EPSS 0.0%
Data Extraction Data Leakage Framework API
open-webui Patch: 0.8.6 CWE-22 4 ATLAS
HIGH EXPLOIT AVAIL

BentoML: command injection in bentofile.yaml containerize

CVE-2026-33744
7.8
EPSS 0.0%
Code Execution Supply Chain Framework
bentoml Patch: 1.4.37 CWE-94 23 5 ATLAS
HIGH

vLLM: trust_remote_code bypass enables RCE

CVE-2026-27893
8.8
EPSS 0.0%
Code Execution Supply Chain Inference Framework Model
vllm Patch: 0.18.0 CWE-693 127 5 ATLAS
MEDIUM

Streamlit: SSRF leaks NTLMv2 creds via UNC path

CVE-2026-33682
4.7
EPSS 0.0%
Data Leakage Auth Bypass Framework
Streamlit Patch: 1.54.0 CWE-918 2.8K 4 ATLAS
MEDIUM

n8n: LDAP injection enables auth bypass in workflows

CVE-2026-33751
4.8
EPSS 0.0%
Auth Bypass Data Extraction Agent Framework
n8n Patch: 1.123.27 CWE-90 16 3 ATLAS
CRITICAL

n8n: stored XSS enables credential theft via workflow

CVE-2026-33749
9.0
EPSS 0.0%
Data Extraction Auth Bypass Code Execution Agent Framework API
n8n Patch: 1.123.27 CWE-79 16 8 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial