AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

78

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1092 results — no patch
MEDIUM

TensorFlow Lite: DoS via crafted TFLite model file

CVE-2021-37688
5.5
EPSS 0.0%
DoS Supply Chain Framework Inference Model
tensorflow 3.7K 3 ATLAS
MEDIUM

TFLite: infinite loop DoS via crafted strided slice model

CVE-2021-37686
5.5
EPSS 0.0%
DoS Supply Chain Framework Inference
tensorflow CWE-835 3.7K 4 ATLAS
HIGH

TensorFlow Lite: null ptr deref crashes SVDF inference

CVE-2021-37681
7.8
EPSS 0.0%
Code Execution DoS Framework Inference
tensorflow 3.7K 4 ATLAS
MEDIUM

TFLite: division by zero crashes fully connected layers

CVE-2021-37680
5.5
EPSS 0.0%
DoS Supply Chain Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null ptr deref in SparseFillEmptyRows op

CVE-2021-37676
7.8
EPSS 0.0%
Code Execution DoS Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: DoS via division by zero in conv ops

CVE-2021-37675
5.5
EPSS 0.0%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null-ptr deref in Map ops, local C/I/A:High

CVE-2021-37671
7.8
EPSS 0.0%
DoS Code Execution Framework Training Data Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: UnicodeEncode null deref, local code exec

CVE-2021-37667
7.8
EPSS 0.0%
Code Execution DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null-ptr deref in RaggedTensorToVariant op

CVE-2021-37666
7.8
EPSS 0.0%
Code Execution DoS Framework Training Data
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: double-free in BoostedTrees, code exec

CVE-2021-37652
7.8
EPSS 0.0%
Code Execution Framework Training Data
tensorflow CWE-415 3.7K 3 ATLAS
HIGH

TensorFlow SaveV2: null ptr deref, local crash/RCE

CVE-2021-37648
7.8
EPSS 0.0%
Code Execution DoS Framework Training Data
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: heap OOB read in BoostedTrees ops

CVE-2021-37664
7.1
EPSS 0.0%
Data Extraction DoS Framework Training Data
tensorflow 3.7K 4 ATLAS
HIGH

TensorFlow: null deref in BoostedTrees training ops

CVE-2021-37662
7.8
EPSS 0.1%
Code Execution DoS Framework Training Data
tensorflow 3.7K 3 ATLAS
MEDIUM

TensorFlow: integer sign conversion DoS in boosted trees

CVE-2021-37661
5.5
EPSS 0.0%
DoS Framework
tensorflow CWE-681 3.7K 3 ATLAS
HIGH

TensorFlow: heap OOB in cwise ops enables local RCE

CVE-2021-37659
7.8
EPSS 0.0%
Code Execution DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null ptr deref in MatrixSetDiagV ops

CVE-2021-37658
7.8
EPSS 0.0%
DoS Code Execution Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null ptr deref in MatrixDiagV ops

CVE-2021-37657
7.8
EPSS 0.0%
Code Execution DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null ptr deref in RaggedTensorToSparse op

CVE-2021-37656
7.8
EPSS 0.0%
Code Execution DoS Framework Training Data Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: OOB heap read in ResourceScatterUpdate

CVE-2021-37655
7.3
EPSS 0.0%
Data Extraction Code Execution Framework Training Data
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: OOB read/crash via ResourceGather batch_dims

CVE-2021-37654
7.1
EPSS 0.0%
DoS Data Extraction Framework Training Data
tensorflow 3.7K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial