AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,616

AI/ML CVEs Tracked

226

Critical

87

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1616 results
Severity CVE ID Summary CVSS EPSS Package Date
HIGH E CVE-2026-25580 pydantic-ai: SSRF allows internal network access 8.6 0.0% pydantic-ai-slim Feb 6 MEDI CVE-2026-25640 pydantic-ai: Path Traversal enables file access 5.4 0.0% pydantic-ai-slim Feb 6 MEDI E CVE-2026-25475 OpenClaw: path traversal enables arbitrary file read 6.5 0.1% openclaw Feb 4 HIGH CVE-2026-21893 n8n: Input Validation flaw enables exploitation 7.2 0.2% n8n Feb 4 CRIT CVE-2026-25115 n8n: Protection Bypass circumvents security controls 9.9 0.1% n8n Feb 4 HIGH CVE-2026-25056 n8n: Arbitrary File Upload enables RCE 8.8 0.2% n8n Feb 4 HIGH CVE-2026-25055 n8n: Path Traversal enables file access 8.1 0.2% n8n Feb 4 MEDI CVE-2026-25054 n8n: XSS enables session hijacking 5.4 0.0% n8n Feb 4 CRIT CVE-2026-25053 n8n: Command Injection enables RCE 9.9 0.0% n8n Feb 4 CRIT CVE-2026-25052 n8n: security flaw enables exploitation 9.9 0.0% n8n Feb 4 MEDI CVE-2026-25051 n8n: XSS enables session hijacking 5.4 0.0% n8n Feb 4 CRIT CVE-2026-25049 n8n: security flaw enables exploitation 9.9 0.0% n8n Feb 4 HIGH CVE-2025-61917 n8n: Info Disclosure leaks sensitive data 7.7 0.0% n8n Feb 4 HIGH CVE-2026-1777 sagemaker: security flaw enables exploitation 7.2 0.0% sagemaker Feb 2 MEDI CVE-2026-1778 sagemaker: security flaw enables exploitation 5.9 0.0% sagemaker Feb 2 CRIT CVE-2026-22778 vllm: security flaw enables exploitation 9.8 0.1% vllm Feb 2 MEDI GHSA-m7j5-r2p5-c39r picklescan: Deserialization enables RCE picklescan Feb 2 HIGH GHSA-9m3x-qqw2-h32h picklescan: Deserialization enables RCE picklescan Feb 2 CRIT E CVE-2026-25481 langroid: Code Injection enables RCE 0.0% Feb 2 MEDI E CVE-2025-6208 llama-index-core: DoS causes service disruption 5.3 0.0% llama-index-core Feb 2

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial