AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
76
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 512 results — has patch Severity CVE ID Summary CVSS EPSS Package Date
MEDI GHSA-vr7h-p6mm-wpmh picklescan: PyTorch gadget bypasses pickle RCE detection — — picklescan Aug 22 MEDI GHSA-h3qp-7fh3-f8h4 picklescan: detection bypass via PyTorch proxy RCE — — picklescan Aug 22 MEDI GHSA-f745-w6jp-hpxx picklescan: RCE bypass via torch.utils.collect_env — — picklescan Aug 22 MEDI GHSA-f4x7-rfwp-v3xw picklescan: scanner bypass enables RCE via PyTorch function — — picklescan Aug 22 MEDI GHSA-86cj-95qr-2p4f picklescan: detection bypass enables PyTorch model RCE — — picklescan Aug 22 MEDI GHSA-4r9r-ch6f-vxmx picklescan: PyTorch bypass allows undetected RCE — — picklescan Aug 22 HIGH CVE-2025-9141 vLLM: RCE via eval() in Qwen3 Coder tool parser 8.8 — vllm Aug 21 HIGH GHSA-9gvj-pp9x-gcfr picklescan: detection bypass allows malicious pickle exec — — picklescan Aug 12 HIGH E CVE-2025-54886 skops: joblib fallback enables RCE via model load 8.4 0.4% skops Aug 8 CRIT CVE-2025-30404 ExecuTorch: integer overflow RCE on model load 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54949 ExecuTorch: heap buffer overflow RCE via model loading 9.8 0.3% executorch Aug 8 CRIT E CVE-2025-54950 ExecuTorch: OOB read in model loader enables RCE 9.8 0.3% executorch Aug 8 CRIT CVE-2025-54951 ExecuTorch: heap buffer overflow RCE in model loading 9.8 0.3% executorch Aug 8 CRIT CVE-2025-30405 ExecuTorch: integer overflow in model load → RCE 9.8 0.2% executorch Aug 8 HIGH E CVE-2025-54413 skops: RCE via MethodNode unsafe deserialization — 0.0% skops Jul 26 HIGH E CVE-2025-54412 skops: OperatorFuncNode type confusion → RCE — 0.0% skops Jul 26 HIGH CVE-2025-30402 ExecuTorch: heap overflow in method load, RCE risk 8.1 0.4% executorch Jul 11 MEDI E CVE-2025-6211 llama-index: DocugamiReader MD5 hash collision drops chunks 6.5 0.3% llama-index-readers-docugami Jul 10 HIGH E CVE-2025-6209 llama_index: path traversal allows arbitrary file read 7.5 0.4% llama-index-core Jul 7 MEDI E CVE-2025-6210 llama-index Obsidian reader: hardlink path traversal leaks files 6.2 0.1% llama-index-readers-obsidian Jul 7 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial