AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
AI/ML CVEs Tracked
Critical
New This Week
In CISA KEV
Latest AI Security Threats
Showing 20 of 1604 resultsPicklescan: CRC bypass hides malicious pickle in ZIP
CVE-2025-10156 PickleScan: subclass bypass enables malicious model RCE
CVE-2025-10157 MONAI: unsafe pickle deserialization RCE in data pipeline
CVE-2025-58757 MONAI: unsafe deserialization in CheckpointLoader allows RCE
CVE-2025-58756 MONAI: path traversal allows arbitrary file write
CVE-2025-58755 n8n: unrestricted file upload RCE via Chat Trigger
CVE-2025-56265 xgrammar: DoS via oversized JSON schema grammar parsing
CVE-2025-58446 EverNoteLoader: XXE exposes host files in LangChain
CVE-2025-6984 picklescan: scanner bypass enables model RCE
GHSA-q77w-mwjj-7mqx picklescan: scanner bypass enables RCE via ML model files
GHSA-49gj-c84q-6qm9 picklescan: scan bypass allows silent RCE via ML models
GHSA-9w88-8rmg-7g2p picklescan: detection bypass allows undetected RCE in ML models
GHSA-fqq6-7vqf-w3fg picklescan: scanner bypass enables pickle RCE in ML models
GHSA-3gf5-cxq9-w223 picklescan: scanner bypass allows pickle-based RCE
GHSA-j343-8v2j-ff7w picklescan: scanner bypass enables RCE via ML models
GHSA-m869-42cg-3xwr picklescan: detection bypass allows pickle RCE in ML pipelines
GHSA-p9w7-82w4-7q8m picklescan: scanner bypass leads to undetected RCE
GHSA-xp4f-hrf8-rxw7 picklescan: scanner bypass enables PyTorch gadget RCE
GHSA-4whj-rm5r-c2v8 picklescan: scanner bypass enables RCE via model files
GHSA-9xph-j2h6-g47v picklescan: RCE bypass enables ML supply chain attack
GHSA-8r4j-24qv-fmq9 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial