AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 225 results — Critical severity

CRITICAL EXPLOIT AVAIL

MLflow: path traversal enables sandbox escape, file overwrite

Supply Chain Code Execution Framework

mlflow Patch: 3.9.0rc0 CWE-29 624 5 ATLAS

CRITICAL

n8n: stored XSS enables credential theft via workflow

Data Extraction Auth Bypass Code Execution Agent Framework API

n8n Patch: 1.123.27 CWE-79 16 8 ATLAS

CRITICAL

n8n: member role steals plaintext HTTP credentials

Auth Bypass Data Extraction Data Leakage Agent Framework API

n8n Patch: 1.123.27 CWE-639 16 6 ATLAS

CRITICAL

TensorFlow: type confusion NPD in tensor conversion

Code Execution DoS Framework Inference

n8n Patch: 2.14.1 CWE-94 16 3 ATLAS

CRITICAL

litellm: supply chain attack harvests AI API credentials

GHSA-5mg7-485q-xm76

1mo ago

Supply Chain Data Extraction Code Execution Framework API Agent

litellm CWE-506 4 8 ATLAS

CRITICAL

NVIDIA: Deserialization enables RCE

Code Execution Supply Chain Data Extraction Framework Training Data

CWE-502 5 ATLAS

CRITICAL EXPLOIT AVAIL

langflow: security flaw enables exploitation

Supply Chain Code Execution Data Extraction Framework Agent

langflow CWE-74 5 ATLAS

CRITICAL EXPLOIT AVAIL

langflow: Path Traversal enables file access

Code Execution Auth Bypass Supply Chain Framework Agent Plugin

langflow Patch: 1.9.0 CWE-22 8 ATLAS

CRITICAL KEV

langflow: Code Injection enables RCE

Model Poisoning Code Execution Framework Agent API

langflow CWE-95 6 ATLAS

CRITICAL EXPLOIT AVAIL

mlflow: Path Traversal enables file access

Supply Chain Model Poisoning Code Execution Framework Model Training Data

mlflow Patch: 3.9.0rc0 CWE-22 624 6 ATLAS

CRITICAL EXPLOIT AVAIL

onnx: Integrity Verification bypass enables tampering

Supply Chain Model Poisoning Code Execution Framework RAG API

onnx CWE-345 1.1K 10 ATLAS

CRITICAL EXPLOIT AVAIL

OpenClaw: RCE via request-side prompt injection

Prompt Injection Code Execution Agent Framework

openclaw 4 5 ATLAS 1 incident

CRITICAL EXPLOIT AVAIL

mcp-atlassian: Path Traversal enables file access

Code Execution Prompt Injection Supply Chain Agent Plugin Framework

mcp-atlassian Patch: 0.17.0 CWE-22 6 ATLAS

CRITICAL EXPLOIT AVAIL

vllm: SSRF allows internal network access

Data Extraction Data Leakage Code Execution Inference RAG Agent

vllm CWE-918 126 7 ATLAS

CRITICAL EXPLOIT AVAIL

Flowise: auth bypass exposes NVIDIA NIM container endpoints

Auth Bypass Code Execution Agent Inference Framework

flowise CWE-306 5 ATLAS

CRITICAL EXPLOIT AVAIL

flowise: Arbitrary File Upload enables RCE

Code Execution Framework RAG Plugin

flowise CWE-434 8 ATLAS 2 incidents

CRITICAL

OpenClaw: SSRF via Feishu extension exposes internal services

Prompt Injection Data Extraction Auth Bypass Agent Plugin

openclaw 4 5 ATLAS 1 incident

CRITICAL

picklescan: Allowlist Bypass evades input filtering

GHSA-g38g-8gr9-h9xp

9.8

2mo ago

Supply Chain Code Execution Framework Model

picklescan Patch: 1.0.4 CWE-184 3 7 ATLAS 1 incident

CRITICAL

picklescan: security flaw enables exploitation

GHSA-vvpj-8cmc-gx39

10.0

2mo ago

Supply Chain Code Execution Auth Bypass Model Framework

picklescan Patch: 1.0.4 CWE-183 3 8 ATLAS

CRITICAL

picklescan: Allowlist Bypass evades input filtering

GHSA-7wx9-6375-f5wh

9.8

2mo ago

Supply Chain Code Execution Framework

picklescan Patch: 1.0.4 CWE-184 3 5 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?