AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
MEDIUM EXPLOIT AVAIL

Label Studio: reflected XSS via label_config param

CVE-2025-25296
6.1
EPSS 20.0%
Code Execution Data Extraction Training Data Framework
label-studio Patch: 1.16.0 CWE-79 1 4 ATLAS
HIGH EXPLOIT AVAIL

Label Studio SDK: path traversal leaks server filesystem

CVE-2025-25295
--
EPSS 0.1%
Data Extraction Data Leakage Privacy Violation Framework Training Data
label-studio-sdk Patch: 1.0.10 CWE-26 1 5 ATLAS
CRITICAL

PandasAI: prompt injection enables unauthenticated RCE

CVE-2024-12366
9.8
EPSS 5.9%
Prompt Injection Code Execution Framework Agent
CWE-94 6 ATLAS
LOW

vLLM: hash collision enables prefix cache poisoning

CVE-2025-25183
2.6
EPSS 0.3%
Adversarial Examples Data Leakage Inference Framework
vllm CWE-354 127 5 ATLAS
HIGH

vLLM: unsafe deserialization RCE via model loading

CVE-2025-24357
8.8
EPSS 1.0%
Supply Chain Code Execution Framework Inference Model
vllm CWE-502 127 5 ATLAS
MEDIUM

Jobify WP: missing authz allows OpenAI key abuse, SSRF

CVE-2024-13698
6.5
EPSS 0.5%
Auth Bypass DoS Data Extraction API Plugin
5 ATLAS
HIGH

nbgrader: Clickjacking exposes formgrader via IFrame

CVE-2025-23205
--
EPSS 0.3%
Data Extraction Social Engineering Auth Bypass Framework
CWE-668 4 ATLAS
HIGH EXPLOIT AVAIL

Gradio: ACL bypass via path case manipulation

CVE-2025-23042
7.5
EPSS 0.1%
Auth Bypass Data Extraction Framework API
gradio CWE-178 679 4 ATLAS
MEDIUM EXPLOIT AVAIL

Composio: command injection in AI agent tool calls

CVE-2024-53526
6.4
EPSS 0.8%
Code Execution Supply Chain Framework Agent API
CWE-77 5 ATLAS
MEDIUM EXPLOIT AVAIL

Keras: path traversal enables arbitrary file write

CVE-2024-55459
6.5
EPSS 0.1%
Supply Chain Code Execution Framework Training Data
keras CWE-22 1.5K 4 ATLAS
UNKNOWN

AIDeepin: MD5 collision enables RAG knowledge base poisoning

CVE-2025-21604
--
EPSS 0.1%
Supply Chain Model Poisoning RAG Framework
3 ATLAS
UNKNOWN

free-one-api: MD5 hashing allows credential cracking

CVE-2024-56516
--
EPSS 0.1%
Auth Bypass Data Extraction API Framework
4 ATLAS
MEDIUM EXPLOIT AVAIL

WP Text Prompter: Stored XSS in OpenAI shortcode plugin

CVE-2024-11896
6.4
EPSS 0.1%
Code Execution Data Extraction Plugin API
4 ATLAS
HIGH EXPLOIT AVAIL

Lobe Chat: pre-auth SSRF leaks OpenAI API keys

CVE-2024-32965
8.6
EPSS 0.2%
Data Extraction Auth Bypass API Framework
6 ATLAS
HIGH

MLflow: local privilege escalation via spark_udf ToCToU

CVE-2024-27134
7.0
EPSS 0.0%
Code Execution Auth Bypass Framework Training Data
mlflow CWE-276 624 5 ATLAS
HIGH EXPLOIT AVAIL

Transformers: RCE via Trax model deserialization

CVE-2024-11394
8.8
EPSS 65.0%
Code Execution Supply Chain Framework Model
transformers CWE-502 7.9K 6 ATLAS
HIGH EXPLOIT AVAIL

Transformers: RCE via MaskFormer model deserialization

CVE-2024-11393
8.8
EPSS 79.5%
Code Execution Supply Chain Framework Model
transformers CWE-502 7.9K 6 ATLAS
HIGH EXPLOIT AVAIL

HuggingFace Transformers: RCE via config deserialization

CVE-2024-11392
8.8
EPSS 59.3%
Supply Chain Code Execution Framework Model
transformers CWE-502 7.9K 6 ATLAS
CRITICAL EXPLOIT AVAIL

LlamaFactory: RCE via OS command injection in training

CVE-2024-52803
9.8
EPSS 3.2%
Code Execution Supply Chain Framework Training Data
llamafactory Patch: 0.9.1 CWE-78 1 6 ATLAS
MEDIUM

Giskard: ReDoS in text perturbation causes DoS

CVE-2024-52524
--
EPSS 2.0%
DoS Supply Chain Framework
CWE-1333 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial