AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
76
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 1604 results Severity CVE ID Summary CVSS EPSS Package Date
MEDI GHSA-cj3c-v495-4xqh picklescan: security bypass enables RCE in ML pipelines — — picklescan Aug 26 MEDI GHSA-7cq8-mj8x-j263 picklescan: detection bypass allows malicious pickle RCE — — picklescan Aug 26 MEDI GHSA-6w4w-5w54-rjvr picklescan: detection bypass allows RCE via ML model files — — picklescan Aug 26 MEDI GHSA-3vg9-h568-4w9m picklescan: RCE bypass via idlelib SetText evasion — — picklescan Aug 26 MEDI GHSA-f54q-57x4-jg88 picklescan: scanner bypass enables RCE in ML models — — picklescan Aug 26 MEDI GHSA-6vqj-c2q5-j97w picklescan: scanner bypass enables RCE via ML models — — picklescan Aug 26 MEDI GHSA-x696-vm39-cp64 picklescan: scan bypass allows RCE in ML pipelines — — picklescan Aug 26 MEDI GHSA-g344-hcph-8vgg picklescan: scanner bypass enables RCE in ML pipelines — — picklescan Aug 26 MEDI GHSA-5qwp-399c-mjwf picklescan: bypass enables undetected RCE in ML models — — picklescan Aug 26 CRIT E CVE-2025-55526 n8n-workflows: path traversal in download_workflow endpoint 9.1 0.6% fastapi Aug 26 HIGH E CVE-2025-5302 llama-index: JSON parsing DoS via deep recursion 8.6 0.1% llama-index-core Aug 26 HIGH E CVE-2025-57809 xgrammar: uncontrolled recursion in grammar parsing causes DoS 7.5 0.0% xgrammar Aug 25 HIGH E CVE-2025-57760 Langflow: privilege escalation to full superuser via CLI 8.8 0.0% langflow Aug 25 MEDI GHSA-vv6j-3g6g-2pvj picklescan: PyTorch gadget bypasses scanner, enables RCE — — picklescan Aug 22 MEDI GHSA-vr7h-p6mm-wpmh picklescan: PyTorch gadget bypasses pickle RCE detection — — picklescan Aug 22 MEDI GHSA-h3qp-7fh3-f8h4 picklescan: detection bypass via PyTorch proxy RCE — — picklescan Aug 22 MEDI GHSA-f745-w6jp-hpxx picklescan: RCE bypass via torch.utils.collect_env — — picklescan Aug 22 MEDI GHSA-f4x7-rfwp-v3xw picklescan: scanner bypass enables RCE via PyTorch function — — picklescan Aug 22 MEDI GHSA-86cj-95qr-2p4f picklescan: detection bypass enables PyTorch model RCE — — picklescan Aug 22 MEDI GHSA-4r9r-ch6f-vxmx picklescan: PyTorch bypass allows undetected RCE — — picklescan Aug 22 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial