AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 684 results — High severity

HIGH

openclaw: auth bypass lets write-scope callers mutate admin config

GHSA-7jp6-r74r-995q

3w ago

Auth Bypass Data Leakage Agent Framework

openclaw Patch: 2026.4.10 CWE-266 4 3 ATLAS 1 incident

HIGH

openclaw: sandbox escape via host=node exec routing bypass

GHSA-736r-jwj6-4w23

3w ago

Auth Bypass Code Execution Agent Framework

openclaw Patch: 2026.4.10 CWE-863 4 5 ATLAS 1 incident

HIGH

openclaw: untrusted plugin auto-enabled during onboarding

GHSA-939r-rj45-g2rj

3w ago

Supply Chain Auth Bypass Agent Plugin

openclaw Patch: 2026.4.9 CWE-829 4 4 ATLAS 1 incident

HIGH

openclaw: CDP relay exposes browser DevTools on 0.0.0.0

GHSA-525j-hqq2-66r4

3w ago

Auth Bypass Data Extraction Agent

openclaw Patch: 2026.4.10 CWE-284 4 4 ATLAS 1 incident

HIGH

openclaw: trust bypass loads untrusted workspace plugins

GHSA-82qx-6vj7-p8m2

3w ago

Supply Chain Auth Bypass Code Execution Agent Plugin Framework

openclaw Patch: 2026.4.10 CWE-862 4 4 ATLAS 1 incident

HIGH

OpenClaw: Exec environment denylist missed high-risk interpreter startup variables

GHSA-vfp4-8x56-j7c5

3w ago

openclaw Patch: 2026.4.10 CWE-184 4

HIGH

OpenClaw: Voice-call realtime WebSocket accepted oversized frames

GHSA-vw3h-q6xq-jjm5

3w ago

openclaw Patch: 2026.4.10 CWE-400 4

HIGH

OpenClaw: config.get redaction bypass through sourceConfig and runtimeConfig aliases

GHSA-8372-7vhw-cm6q

3w ago

openclaw Patch: 2026.4.14 CWE-212 4

HIGH

Flowise: Unauthenticated TTS endpoint accepts arbitrary credential IDs — enables API credit abuse via stored credentials

GHSA-5fw2-mwhh-9947

3w ago

flowise Patch: 3.1.0 CWE-639

HIGH

Flowise: Public chatflow endpoints return unsanitized flowData including plaintext API keys, passwords, and credential IDs

GHSA-w47f-j8rh-wx87

3w ago

flowise Patch: 3.1.0

HIGH

Flowise: Mass Assignment in DocumentStore Create Endpoint Leads to Cross-Workspace Object Takeover (IDOR)

GHSA-3prp-9gf7-4rxx

3w ago

flowise Patch: 3.1.0 CWE-284

HIGH

paperclipai: connector trust bypass enables Gmail read/write

GHSA-gqqj-85qm-8qhf

8.7

3w ago

Auth Bypass Privacy Violation Data Extraction Agent Plugin API

paperclipai CWE-284 3.7K 6 ATLAS

HIGH

Paperclip: RCE via workspace runtime command injection

GHSA-w8hx-hqjv-vjcq

7.3

3w ago

Code Execution Data Extraction Supply Chain Agent Plugin Framework

@paperclipai/server Patch: 2026.416.0 CWE-77 3.7K 8 ATLAS

HIGH

Flowise: auth bypass enables account takeover via null token

GHSA-f6hc-c5jr-878p

3w ago

Auth Bypass Data Extraction Agent Framework

flowise Patch: 3.1.0 CWE-287 4 ATLAS

HIGH

Flowise: Cypher injection allows full Neo4j DB wipe

GHSA-28g4-38q8-3cwc

3w ago

Data Extraction Code Execution Data Leakage Agent Framework Plugin

flowise-components Patch: 3.1.0 CWE-943 5 ATLAS

HIGH

Flowise: HTTP reset link exposes tokens to MITM takeover

GHSA-x5w6-38gp-mrqh

3w ago

Auth Bypass Data Extraction Agent Framework

flowise Patch: 3.1.0 CWE-319 4 ATLAS

HIGH

Flowise: OAuth token theft via unauthenticated endpoint

GHSA-6f7g-v4pp-r667

3w ago

Auth Bypass Data Extraction Privacy Violation Agent Framework API

flowise Patch: 3.1.0 CWE-306 6 ATLAS

HIGH

FlowiseAI: SSRF via prompt injection in API Chain

GHSA-6r77-hqx7-7vw8

7.1

3w ago

Prompt Injection Data Extraction Agent Framework

flowise-components Patch: 3.1.0 CWE-918 5 ATLAS

HIGH

Flowise: SSRF bypass exposes internal services

GHSA-2x8m-83vc-6wv4

7.1

3w ago

Auth Bypass Data Extraction Agent Framework Plugin

flowise-components Patch: 3.1.0 CWE-367 5 ATLAS

HIGH

Flowise: SSRF bypass exposes cloud IAM credentials

GHSA-xhmj-rg95-44hv

7.1

3w ago

Auth Bypass Data Extraction Code Execution Agent Framework Plugin

flowise-components Patch: 3.1.0 CWE-284 5 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?