AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
Severity CVE ID Summary CVSS EPSS Package Date
HIGH CVE-2023-25666 TensorFlow: FPE in AudioSpectrogram causes DoS 7.5 0.1% tensorflow Mar 25 HIGH E CVE-2023-25665 TensorFlow: null ptr deref DoS via sparse tensors 7.5 0.1% tensorflow Mar 25 CRIT E CVE-2023-25664 TensorFlow: heap overflow in AvgPoolGrad, RCE risk 9.8 0.1% tensorflow Mar 25 HIGH CVE-2023-25663 TensorFlow: null ptr deref crashes inference serving 7.5 0.2% tensorflow Mar 25 HIGH CVE-2023-25662 TensorFlow: integer overflow in EditDistance causes DoS 7.5 0.2% tensorflow Mar 25 HIGH CVE-2023-25660 TensorFlow: null ptr deref in Print op allows remote DoS 7.5 0.2% tensorflow Mar 25 HIGH CVE-2023-25659 TensorFlow: OOB read in DynamicStitch enables DoS 7.5 0.2% tensorflow Mar 25 HIGH CVE-2023-25658 TensorFlow: OOB read in GRUBlockCellGrad causes DoS 7.5 0.1% tensorflow Mar 25 CRIT CVE-2023-1177 MLflow: path traversal allows arbitrary file read/write 9.8 93.3% mlflow Mar 24 LOW E CVE-2023-1176 MLflow: path traversal exposes arbitrary local files 3.3 0.2% mlflow Mar 24 MEDI CVE-2023-27494 Streamlit: reflected XSS enables session hijacking 6.1 0.7% streamlit Mar 16 CRIT E CVE-2023-25823 Gradio: hardcoded SSH key leaks via share=True demos 9.8 0.4% gradio Feb 23 CRIT CVE-2022-41910 TensorFlow Grappler: OOB read crashes or leaks memory 9.1 0.3% tensorflow Dec 6 CRIT E CVE-2022-41902 TensorFlow Grappler: OOB read/crash via crafted model 9.1 0.3% tensorflow Dec 6 CRIT E CVE-2022-45907 PyTorch: RCE via unsafe eval in JIT annotations 9.8 0.8% pytorch Nov 26 HIGH CVE-2022-41911 TensorFlow: type confusion DoS via bool cast in tensors 7.5 0.1% tensorflow Nov 18 HIGH E CVE-2022-41909 TensorFlow: remote DoS via malformed tensor input 7.5 0.5% tensorflow Nov 18 HIGH E CVE-2022-41908 TensorFlow: DoS via invalid UTF-8 input to PyFunc op 7.5 0.3% tensorflow Nov 18 HIGH E CVE-2022-41907 TensorFlow: integer overflow in ResizeNearestNeighborGrad → DoS 7.5 0.1% tensorflow Nov 18 HIGH E CVE-2022-41901 TensorFlow: DoS via SparseMatrixNNZ CHECK assertion fail 7.5 0.3% tensorflow Nov 18

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial