AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
76
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 1604 results Severity CVE ID Summary CVSS EPSS Package Date
HIGH E CVE-2025-30370 jupyterlab-git: command injection via malicious repo name 7.4 0.1% — Apr 4 LOW E CVE-2025-3136 PyTorch: memory corruption in CUDA caching allocator 3.3 0.1% pytorch Apr 3 MEDI E CVE-2025-3121 PyTorch: memory corruption in JIT flatbuffer loader 5.5 0.1% pytorch Apr 2 MEDI CVE-2025-31843 OpenAI WP Plugin: broken access control on AI settings 4.3 0.3% — Apr 1 MEDI E CVE-2025-3001 PyTorch: lstm_cell memory corruption, local code exec 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-3000 PyTorch: memory corruption in torch.jit.script compiler 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-2999 PyTorch: memory corruption in RNN sequence unpacking 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-2998 PyTorch: memory corruption in RNN pad_packed_sequence 5.3 0.1% pytorch Mar 31 MEDI E CVE-2025-2953 PyTorch: DoS via mkldnn_max_pool2d resource leak 5.5 0.1% pytorch Mar 30 MEDI E CVE-2025-26265 openairinterface5g: segfault enables DoS via crafted UE message 6.5 0.9% openairinterface5g Mar 27 HIGH CVE-2025-30358 Mesop: class pollution enables DoS and LLM jailbreak 8.1 2.4% — Mar 27 CRIT E CVE-2024-12029 InvokeAI: RCE via unsafe torch.load deserialization 9.8 44.2% — Mar 21 MEDI E CVE-2025-0508 SageMaker SDK: MD5 collision silently replaces ML workflows 5.9 0.1% sagemaker Mar 20 HIGH E CVE-2025-0628 litellm: privilege escalation viewer→proxy admin via bad API key 8.1 0.3% litellm Mar 20 HIGH E CVE-2025-0330 LiteLLM: Langfuse API key leak via error handling 7.5 0.5% litellm Mar 20 HIGH CVE-2024-9606 LiteLLM: API key leakage in logs exposes credentials 7.5 0.2% litellm Mar 20 HIGH GHSA-5ccf-884p-4jjq open-webui: DoS via unauthenticated multipart parsing 7.5 — open-webui Mar 20 CRIT CVE-2024-9052 vLLM: RCE via pickle deserialization in distributed API 9.8 0.3% vllm Mar 20 HIGH E CVE-2024-8984 litellm: unauthenticated DoS via multipart boundary parsing 7.5 0.6% litellm Mar 20 HIGH E CVE-2024-7983 open-webui: unauthenticated DoS via markdown parser 7.5 0.4% open-webui Mar 20 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial