AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
Severity CVE ID Summary CVSS EPSS Package Date
HIGH CVE-2025-62164 vllm: Input Validation flaw enables exploitation 8.8 0.2% vllm Nov 21 LOW E CVE-2025-63396 pytorch: security flaw enables exploitation 3.3 0.0% pytorch Nov 12 MEDI CVE-2025-12732 AI component: Info Disclosure leaks sensitive data 4.3 0.0% Nov 12 MEDI CVE-2025-11972 AI component: SQL Injection exposes database 4.9 0.0% Nov 8 HIGH E CVE-2025-64496 open-webui: Code Injection enables RCE 7.3 0.1% open-webui Nov 7 HIGH E CVE-2025-64495 Open WebUI: XSS-to-RCE via malicious prompt injection 8.7 0.0% open-webui Nov 7 MEDI CVE-2025-12360 Better: security flaw enables exploitation 4.3 0.0% Nov 6 HIGH E CVE-2025-64439 langgraph-checkpoint: Deserialization enables RCE 1.1% langgraph-checkpoint Nov 5 MEDI E CVE-2025-12695 dspy: security flaw enables exploitation 5.9 0.0% Nov 4 HIGH CVE-2025-62726 n8n: security flaw enables exploitation 8.8 0.1% n8n Oct 30 CRIT E CVE-2025-12060 keras: Path Traversal enables file access 9.8 0.1% keras Oct 30 LOW E CVE-2025-50736 pdf2zh: security flaw enables exploitation 0.0% Oct 30 HIGH E CVE-2025-64104 langgraph-checkpoint-sqlite: SQL Injection exposes database 7.3 0.0% langgraph-checkpoint-sqlite Oct 29 UNKN CVE-2025-11203 LiteLLM: Info Disclosure leaks sensitive data 0.1% Oct 29 CRIT E CVE-2025-11201 mlflow: Path Traversal enables file access 9.8 9.8% mlflow Oct 29 CRIT CVE-2025-11200 mlflow: security flaw enables exploitation 9.8 0.2% mlflow Oct 29 MEDI E CVE-2025-12058 Keras: safe_mode bypass enables file read and SSRF 0.1% keras Oct 29 HIGH E CVE-2025-8709 langgraph-checkpoint-sqlite: SQL Injection exposes database 7.3 0.0% langgraph-checkpoint-sqlite Oct 26 MEDI E CVE-2025-11844 smolagents: security flaw enables exploitation 5.4 0.0% smolagents Oct 22 MEDI E CVE-2025-60511 Moodle: IDOR enables unauthorized data access 4.3 0.0% Oct 21

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial