AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

78

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
MEDIUM EXPLOIT AVAIL

TensorFlow: uncontrolled allocation DoS in shape inference

CVE-2022-23580
6.5
EPSS 0.3%
DoS Framework Inference
tensorflow CWE-1284 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: DoS via Grappler optimizer CHECK failure

CVE-2022-23579
6.5
EPSS 0.2%
DoS Supply Chain Framework Model
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: memory leak via invalid graph node

CVE-2022-23578
4.3
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 2 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: null pointer deref crashes model loader

CVE-2022-23577
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: integer overflow in cost estimator causes DoS

CVE-2022-23576
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: integer overflow in cost estimator → DoS

CVE-2022-23575
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: heap OOB read/write enables network RCE

CVE-2022-23574
8.8
EPSS 0.3%
Code Execution Supply Chain Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: uninitialized memory in AssignOp

CVE-2022-23573
8.8
EPSS 0.3%
Code Execution Data Leakage DoS Framework Inference Training Data
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: DoS via shape inference assertion failure

CVE-2022-23572
6.5
EPSS 0.5%
DoS Framework Inference
tensorflow CWE-617 3.7K 3 ATLAS
MEDIUM

TensorFlow: protobuf assertion DoS via invalid tensor dtype

CVE-2022-23571
6.5
EPSS 0.1%
DoS Framework Inference
tensorflow CWE-617 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: null-deref DoS via malformed protobuf tensor

CVE-2022-23570
6.5
EPSS 0.5%
DoS Code Execution Framework Inference
tensorflow CWE-476 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: heap OOB write in Grappler, RCE risk

CVE-2022-23566
8.8
EPSS 0.4%
Code Execution Supply Chain Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM

TensorFlow: DoS via malicious SavedModel AttrDef duplication

CVE-2022-23565
6.5
EPSS 0.1%
DoS Supply Chain Framework Model
tensorflow 3.7K 5 ATLAS
MEDIUM

TensorFlow: DoS via reachable assertion in protobuf decode

CVE-2022-23564
6.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM

TensorFlow: TOC/TOU race allows temp file hijacking

CVE-2022-23563
6.3
EPSS 0.0%
Supply Chain Data Leakage Code Execution Framework Training Data
tensorflow CWE-367 3.7K 3 ATLAS
HIGH

TensorFlow: Range integer overflow, RCE/DoS risk

CVE-2022-23562
8.8
EPSS 0.4%
Code Execution DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow Lite: OOB write, arbitrary write primitive

CVE-2022-23561
8.8
EPSS 0.2%
Code Execution Supply Chain Framework Inference Model
tensorflow 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TFLite: OOB read/write in sparse tensor → RCE

CVE-2022-23560
8.8
EPSS 0.3%
Code Execution Supply Chain Data Extraction Framework Model Inference
tensorflow 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TFLite: integer overflow in embedding lookup → heap OOB RW

CVE-2022-23559
8.8
EPSS 0.5%
Supply Chain Code Execution Framework Inference
tensorflow CWE-190 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TFLite: integer overflow in model loading, RCE risk

CVE-2022-23558
8.8
EPSS 0.4%
Code Execution Supply Chain Framework Inference
tensorflow 3.7K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial