AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results

MEDIUM

ms-swift: RCE via pickle deserialization in adapter models

GHSA-r54c-2xmf-2cf3

9mo ago

Supply Chain Code Execution Model Poisoning Framework Model Training Data

CWE-502 6 ATLAS

CRITICAL EXPLOIT AVAIL

BentoML: unauthenticated SSRF via file upload URLs

Supply Chain Data Extraction Auth Bypass Framework Inference API

bentoml CWE-918 23 5 ATLAS

CRITICAL EXPLOIT AVAIL

LangChain GmailToolkit: indirect prompt injection to RCE

Prompt Injection Code Execution Data Extraction Framework Agent Plugin

6 ATLAS

CRITICAL EXPLOIT AVAIL

smolagents: sandbox escape enables unauthenticated RCE

Code Execution Supply Chain Data Leakage Framework Agent

smolagents CWE-94 88 5 ATLAS

HIGH EXPLOIT AVAIL

skops: RCE via MethodNode unsafe deserialization

CVE-2025-54413

EPSS 0.0%

9mo ago

Code Execution Supply Chain Framework Model

skops Patch: 0.12.0 CWE-351 671 4 ATLAS

HIGH EXPLOIT AVAIL

skops: OperatorFuncNode type confusion → RCE

CVE-2025-54412

EPSS 0.0%

9mo ago

Supply Chain Code Execution Framework Model

skops Patch: 0.12.0 CWE-351 671 4 ATLAS

MEDIUM

OpenAI Codex CLI: sandbox bypass via ripgrep flag abuse

Code Execution Auth Bypass Agent Plugin

4 ATLAS

MEDIUM

WordPress AI Engine: SSRF leaks files via OpenAI API

Data Extraction Data Leakage Auth Bypass Plugin API

4 ATLAS

MEDIUM EXPLOIT AVAIL

Ollama: auth token hijack via crafted WWW-Authenticate

Auth Bypass Data Extraction Supply Chain Inference API Model

ollama 1.5K 5 ATLAS

MEDIUM EXPLOIT AVAIL

Dagster: path traversal exposes arbitrary file read via gRPC

Data Extraction Data Leakage Framework Training Data

CWE-22 5 ATLAS

MEDIUM

DSpace: XXE injection enables server file disclosure

Data Extraction Supply Chain API Training Data

5 ATLAS

HIGH

ExecuTorch: heap overflow in method load, RCE risk

Code Execution Supply Chain Framework Inference Model

executorch Patch: 0.7.0-rc1 CWE-122 2 3 ATLAS

MEDIUM EXPLOIT AVAIL

Transformers: ReDoS in DonutProcessor causes DoS

DoS Framework Inference

transformers CWE-1333 7.9K 4 ATLAS

MEDIUM EXPLOIT AVAIL

Contest Gallery WP Plugin: Stored XSS in OpenAI integration

Code Execution Data Leakage Plugin API

4 ATLAS

MEDIUM EXPLOIT AVAIL

OpenAI Operator: fullscreen spoofing captures credentials

Social Engineering Privacy Violation Agent API

operator 13.8K 6 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index: DocugamiReader MD5 hash collision drops chunks

Supply Chain Data Leakage Framework RAG

llama-index-readers-docugami Patch: 0.3.1 CWE-440 229 4 ATLAS

HIGH EXPLOIT AVAIL

llama_index: path traversal allows arbitrary file read

Data Extraction Data Leakage Framework RAG

llama-index-core Patch: 0.12.41 CWE-29 1.1K 4 ATLAS

HIGH

lollms: timing attack enables credential enumeration

Auth Bypass Data Extraction Framework Agent

lollms CWE-203 4 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index Obsidian reader: hardlink path traversal leaks files

Data Extraction Supply Chain Framework RAG

llama-index-readers-obsidian Patch: 0.5.2 CWE-22 229 3 ATLAS

MEDIUM EXPLOIT AVAIL

llama-index: JSONReader DoS via recursive JSON parsing

llama-index-core Patch: 0.12.38 CWE-674 1.1K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?