AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
76
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 1604 results Severity CVE ID Summary CVSS EPSS Package Date
CRIT E CVE-2025-49655 keras: Deserialization enables RCE 9.8 0.1% keras Oct 17 HIGH CVE-2025-7707 llama-index: world-writable NLTK dir allows local tampering 7.1 0.0% llama-index Oct 13 CRIT GHSA-m9mp-6x32-5rhg scio/PyTorch: torch.load weights_only bypass RCE — — — Oct 9 CRIT E CVE-2025-61913 Flowise: path traversal in file tools leads to RCE 9.9 0.8% flowise Oct 8 MEDI CVE-2025-61620 vllm: DoS via Jinja template injection in chat API 6.5 — vllm Oct 7 HIGH E CVE-2025-6242 vLLM: SSRF in media loader exposes internal network 7.1 0.1% vllm Oct 7 HIGH E CVE-2025-61784 LLaMA-Factory: SSRF+LFI in multimodal chat API 8.1 0.1% llamafactory Oct 7 HIGH E CVE-2025-59425 vLLM: timing attack enables API key bypass 7.5 0.4% vllm Oct 7 HIGH E CVE-2025-6985 langchain-text-splitters: XXE enables arbitrary file read 7.5 0.2% langchain-text-splitters Oct 6 HIGH E CVE-2025-61687 Flowise: unrestricted file upload enables persistent RCE 8.8 0.3% flowise Oct 6 MEDI E CVE-2025-8917 clearml: path traversal in safe_extract → RCE risk 5.8 0.0% clearml Oct 5 HIGH E CVE-2025-7647 llama-index-core: insecure /tmp dir, model theft risk 7.3 0.0% llama-index-core Sep 27 LOW CVE-2025-59842 JupyterLab: missing noopener enables reverse tabnabbing — 0.0% — Sep 26 HIGH E CVE-2025-55560 PyTorch: DoS via sparse/dense tensor Inductor compile 7.5 0.1% pytorch Sep 25 HIGH E CVE-2025-55559 TensorFlow: DoS via Conv2D valid padding crash 7.5 0.1% tensorflow Sep 25 HIGH E CVE-2025-55558 PyTorch: Inductor compiler buffer overflow causes DoS 7.5 0.1% pytorch Sep 25 HIGH E CVE-2025-55557 PyTorch: DoS via cummin+Inductor NameError in 2.7.0 7.5 0.1% pytorch Sep 25 MEDI E CVE-2025-55556 TensorFlow: non-deterministic compilation breaks Embedding 6.5 0.0% tensorflow Sep 25 MEDI E CVE-2025-55554 PyTorch: integer overflow in nan_to_num causes DoS 5.3 0.1% pytorch Sep 25 HIGH E CVE-2025-55553 PyTorch 2.7.0: DoS via proxy_tensor.py syntax error 7.5 0.1% pytorch Sep 25 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial