AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
HIGH EXPLOIT AVAIL

vLLM: unauthenticated DoS via oversized HTTP header

CVE-2025-48956
7.5
EPSS 0.3%
DoS Inference API Framework
vllm CWE-400 127 3 ATLAS
HIGH

vLLM: RCE via eval() in Qwen3 Coder tool parser

CVE-2025-9141
8.8
Code Execution Supply Chain Inference Framework Agent
vllm Patch: 0.10.1.1 CWE-502 127 5 ATLAS
MEDIUM

n8n: symlink traversal enables arbitrary file read/write

CVE-2025-57749
6.5
EPSS 0.1%
Data Extraction Auth Bypass Agent Framework
n8n 16 5 ATLAS
MEDIUM

n8n: Stored XSS enables full account takeover

CVE-2025-52478
5.4
EPSS 0.0%
Auth Bypass Data Leakage Code Execution Agent Framework API
n8n 16 7 ATLAS
HIGH

Merlin Transformers4Rec: code injection via Python dep

CVE-2025-23298
7.8
EPSS 0.0%
Supply Chain Code Execution Framework
4 ATLAS
HIGH

picklescan: detection bypass allows malicious pickle exec

GHSA-9gvj-pp9x-gcfr
--
Supply Chain Code Execution Auth Bypass Framework Model
picklescan Patch: 0.0.27 CWE-502 3 6 ATLAS
UNKNOWN

Zed Agent Panel: AI agent RCE via permissions bypass

CVE-2025-55012
--
EPSS 0.0%
Code Execution Auth Bypass Prompt Injection Agent
6 ATLAS
HIGH EXPLOIT AVAIL

Keras: safe mode bypass enables RCE via model load

CVE-2025-8747
7.8
EPSS 0.0%
Code Execution Supply Chain Framework Model
keras CWE-502 1.5K 5 ATLAS
HIGH EXPLOIT AVAIL

skops: joblib fallback enables RCE via model load

CVE-2025-54886
8.4
EPSS 0.4%
Supply Chain Code Execution Framework Model
skops Patch: 0.13.0 CWE-502 671 5 ATLAS
CRITICAL

ExecuTorch: integer overflow in model load → RCE

CVE-2025-30405
9.8
EPSS 0.2%
Code Execution Supply Chain Framework Model Inference
executorch Patch: 0.7.0 CWE-190 2 4 ATLAS
CRITICAL

ExecuTorch: integer overflow RCE on model load

CVE-2025-30404
9.8
EPSS 0.2%
Code Execution Supply Chain Framework Model Inference
executorch Patch: 0.7.0 CWE-190 2 5 ATLAS
MEDIUM EXPLOIT AVAIL

ExecuTorch: integer overflow enables RCE via model loading

CVE-2025-54952
--
EPSS 0.4%
Code Execution Supply Chain Framework Inference Model
executorch CWE-680 2 4 ATLAS
CRITICAL

ExecuTorch: heap buffer overflow RCE in model loading

CVE-2025-54951
9.8
EPSS 0.3%
Code Execution Supply Chain Framework Model Inference
executorch Patch: 0.7.0 CWE-122 2 4 ATLAS
CRITICAL EXPLOIT AVAIL

ExecuTorch: OOB read in model loader enables RCE

CVE-2025-54950
9.8
EPSS 0.3%
Code Execution Supply Chain Framework Model Inference
executorch Patch: 0.7.0 CWE-125 2 4 ATLAS
CRITICAL

ExecuTorch: heap buffer overflow RCE via model loading

CVE-2025-54949
9.8
EPSS 0.3%
Code Execution Supply Chain Framework Model
executorch Patch: 0.7.0 CWE-122 2 5 ATLAS
CRITICAL EXPLOIT AVAIL

Azure OpenAI: SSRF EoP, no auth required (CVSS 10)

CVE-2025-53767
10.0
EPSS 0.5%
Auth Bypass Data Extraction Privacy Violation API Inference
azure_openai 13.8K 6 ATLAS
MEDIUM EXPLOIT AVAIL

Ollama: arbitrary file deletion via /api/pull

CVE-2025-44779
6.6
EPSS 0.0%
DoS Data Leakage Inference Framework
ollama 1.5K 4 ATLAS
MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in TF-to-PyTorch weight converter

CVE-2025-5197
5.3
EPSS 0.0%
DoS Supply Chain Framework
transformers CWE-1333 7.9K 4 ATLAS
CRITICAL EXPLOIT AVAIL

ChatGLM-Webui: arbitrary file read, no auth required

CVE-2025-45150
9.8
EPSS 0.1%
Data Extraction Auth Bypass Framework API
langchain-chatglm-webui 2.6K 5 ATLAS
HIGH

WP Contest Gallery: Stored XSS exposes OpenAI API creds

CVE-2025-7725
7.2
EPSS 0.3%
Data Extraction Code Execution Plugin API
4 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial