AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

79

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
Severity CVE ID Summary CVSS EPSS Package Date
HIGH E CVE-2026-41273 Flowise is a drag & drop user interface to build... 8.2 0.1% flowise Apr 23 HIGH E CVE-2026-41272 Flowise is a drag & drop user interface to build... 7.1 0.0% flowise Apr 23 HIGH E CVE-2026-41271 Flowise is a drag & drop user interface to build... 8.3 0.1% flowise Apr 23 HIGH E CVE-2026-41270 Flowise is a drag & drop user interface to build... 8.3 0.0% flowise Apr 23 HIGH E CVE-2026-41269 Flowise is a drag & drop user interface to build... 8.8 0.1% flowise Apr 23 CRIT E CVE-2026-41268 Flowise is a drag & drop user interface to build... 9.8 0.7% flowise Apr 23 CRIT E CVE-2026-41267 Flowise is a drag & drop user interface to build... 9.8 0.3% flowise Apr 23 HIGH E CVE-2026-41266 Flowise is a drag & drop user interface to build... 7.5 0.0% flowise Apr 23 CRIT E CVE-2026-41265 Flowise is a drag & drop user interface to build... 9.8 0.2% flowise Apr 23 HIGH E CVE-2026-41138 Flowise is a drag & drop user interface to build... 8.8 0.3% flowise Apr 23 HIGH E CVE-2026-41137 Flowise is a drag & drop user interface to build... 8.8 0.3% flowise Apr 23 HIGH GHSA-2r2p-4cgf-hv7h engram: HTTP server CORS wildcard +... Apr 22 HIGH CVE-2026-6859 A flaw was found in InstructLab. The... 8.8 0.1% Apr 22 MEDI E CVE-2026-6608 A vulnerability was detected in lm-sys fastchat... 5.3 0.0% fschat Apr 20 LOW E CVE-2026-6600 A flaw has been found in langflow-ai langflow up... 3.5 0.0% Apr 20 MEDI E CVE-2026-6599 A vulnerability was detected in langflow-ai... 6.3 0.0% langflow Apr 20 LOW E CVE-2026-6597 A weakness has been identified in langflow-ai... 2.7 0.0% langflow Apr 20 HIGH GHSA-gqqj-85qm-8qhf paperclipai: connector trust bypass enables Gmail read/write 8.7 paperclipai Apr 16 HIGH CVE-2026-30617 LangChain-ChatChat: RCE via unauthenticated MCP interface 8.6 0.2% Apr 15 CRIT E CVE-2025-61260 OpenAI Codex CLI: RCE via malicious MCP config files 9.8 0.1% @openai/codex Apr 14

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial