AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
CRITICAL EXPLOIT AVAIL

llama_index: SQL injection in vector store integrations

CVE-2025-1793
9.8
EPSS 0.1%
Data Extraction Data Leakage Supply Chain Framework RAG
llama-index Patch: 0.12.28 CWE-89 229 5 ATLAS
HIGH EXPLOIT AVAIL

jupyter_core: config hijack enables cross-user code exec

CVE-2025-30167
7.3
EPSS 0.1%
Code Execution Supply Chain Data Extraction Framework Training Data
CWE-427 4 ATLAS
MEDIUM EXPLOIT AVAIL

vLLM: input validation DoS crashes inference worker

CVE-2025-48944
6.5
EPSS 0.3%
DoS Inference API Framework
vllm CWE-20 127 3 ATLAS
MEDIUM EXPLOIT AVAIL

vLLM: ReDoS crashes inference server via malformed regex

CVE-2025-48943
6.5
EPSS 0.2%
DoS Inference Framework
vllm CWE-248 127 4 ATLAS
MEDIUM EXPLOIT AVAIL

vLLM: DoS via malformed JSON schema guided param

CVE-2025-48942
6.5
EPSS 0.2%
DoS Inference API
vllm CWE-248 127 3 ATLAS
MEDIUM EXPLOIT AVAIL

vLLM: ReDoS in tool parser causes service outage

CVE-2025-48887
6.5
EPSS 0.3%
DoS Inference API Framework
vllm CWE-1333 127 3 ATLAS
HIGH EXPLOIT AVAIL

Gradio: unauthenticated file copy enables disk DoS

CVE-2025-48889
7.5
EPSS 1.5%
DoS Framework Inference
gradio CWE-434 679 3 ATLAS
HIGH

vLLM: image hash collision enables multimodal cache leakage

CVE-2025-46722
7.3
EPSS 0.2%
Data Leakage Privacy Violation Inference Framework
vllm CWE-1023 127 4 ATLAS
LOW

vLLM: timing side-channel leaks prompt cache data

CVE-2025-46570
2.6
EPSS 0.2%
Privacy Violation Data Extraction Inference Framework
vllm CWE-203 127 4 ATLAS
LOW EXPLOIT AVAIL

Gradio: CORS origin bypass in ML UI handler

CVE-2025-5320
3.7
EPSS 0.1%
Auth Bypass Framework Inference
gradio CWE-345 679 3 ATLAS
MEDIUM

vllm: ReDoS in inference endpoints enables DoS

GHSA-j828-28rj-hfhp
4.3
DoS Inference Framework
vllm Patch: 0.9.0 CWE-1333 127 3 ATLAS
HIGH EXPLOIT AVAIL

llama-index-cli: OS command injection enables RCE

CVE-2025-1753
7.8
EPSS 0.1%
Code Execution Supply Chain Framework Agent
llama-index CWE-78 229 4 ATLAS
HIGH

label-studio-ml: PyTorch .pt deserialization RCE in YOLO loader

CVE-2025-5173
7.8
EPSS 0.1%
Supply Chain Code Execution Framework Model
label-studio-ml CWE-502 1 4 ATLAS
CRITICAL EXPLOIT AVAIL

vLLM: RCE via exposed TCPStore in distributed inference

CVE-2025-47277
9.8
EPSS 0.9%
Code Execution Data Extraction Inference Framework
vllm CWE-502 127 4 ATLAS
HIGH EXPLOIT AVAIL

transformers: ReDoS in testing_utils causes DoS

CVE-2025-2099
7.5
EPSS 0.1%
DoS Framework
transformers CWE-1333 7.9K 3 ATLAS
UNKNOWN EXPLOIT AVAIL

Ollama: DoS via malicious manifest in /api/pull

CVE-2025-1975
--
EPSS 0.5%
DoS Inference API
ollama 1.5K 3 ATLAS
HIGH EXPLOIT AVAIL

Label Studio: XSS enables unauthorized actions via CSRF

CVE-2025-47783
--
EPSS 0.2%
Code Execution Data Leakage Social Engineering Framework Training Data
label-studio Patch: 1.18.0 CWE-79 1 5 ATLAS
HIGH EXPLOIT AVAIL

llama_index: DoS via uncapped recursion in web reader

CVE-2025-1752
7.5
EPSS 0.2%
DoS Framework RAG
llama-index Patch: 0.12.21 CWE-400 229 3 ATLAS
HIGH

TensorFlow Serving: JSON recursion DoS on inference API

CVE-2025-0649
7.5
EPSS 0.1%
DoS Inference API Framework
tensorflow_serving CWE-787 3.7K 3 ATLAS
HIGH

vLLM: pickle RCE in multi-node inference deployments

CVE-2025-30165
8.0
EPSS 1.3%
Code Execution Inference Framework
vllm CWE-502 127 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial