AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

76

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 512 results — has patch
Severity CVE ID Summary CVSS EPSS Package Date
LOW GHSA-j4c5-89f5-f3pm openclaw: SSRF policy bypass in CDP browser profile creation openclaw Apr 25 LOW GHSA-xrq9-jm7v-g9h7 OpenClaw: auth bypass enables cross-device session hijack openclaw Apr 25 LOW GHSA-c4qg-j8jg-42q5 openclaw: SSRF in QQBot media upload bypasses validation openclaw Apr 25 MEDI GHSA-mj59-h3q9-ghfh openclaw: env var injection via MCP stdio config openclaw Apr 25 LOW GHSA-57r2-h2wj-g887 openclaw: trust-label bypass amplifies prompt injection openclaw Apr 25 MEDI GHSA-hxvm-xjvf-93f3 openclaw: env namespace injection steers agent runtime openclaw Apr 25 MEDI GHSA-72q8-jcmc-97wx openclaw: DM policy bypass via Feishu card-action callbacks openclaw Apr 25 LOW GHSA-v8qf-fr4g-28p2 OpenClaw: auth scope bypass exposes assistant-media files openclaw Apr 25 MEDI GHSA-2xcp-x87w-q377 openclaw: session key auth bypass in webhook routing openclaw Apr 25 MEDI GHSA-wg4g-395p-mqv3 n8n-mcp: credential exposure via HTTP transport logging 4.3 n8n-mcp Apr 25 HIGH GHSA-v4p8-mg3p-g94g litellm: RCE via MCP test endpoints privilege bypass litellm Apr 25 HIGH CVE-2026-40068 Claude Code: git worktree trust bypass executes hooks 0.1% @anthropic-ai/claude-code Apr 24 CRIT GHSA-r75f-5x8p-qvmc litellm: SQLi exposes all managed LLM API credentials litellm Apr 24 HIGH CVE-2026-41486 Ray: Parquet RCE via Arrow extension deserialization 0.1% ray Apr 24 HIGH GHSA-xqmj-j6mv-4862 LiteLLM: RCE via unsandboxed prompt template rendering litellm Apr 24 MEDI CVE-2026-41495 n8n-mcp: bearer tokens exposed in HTTP transport logs 5.3 0.0% n8n-mcp Apr 23 CRIT E CVE-2026-41264 Flowise: prompt injection → unsandboxed RCE via CSV Agent 9.8 0.3% flowise-components Apr 21 MEDI CVE-2026-39378 nbconvert: path traversal exfiltrates files via HTML export 6.5 0.0% nbconvert Apr 21 MEDI CVE-2026-39377 nbconvert: path traversal enables arbitrary file write 6.5 0.0% nbconvert Apr 21 HIGH CVE-2026-39861 Claude Code: sandbox escape via symlink allows arbitrary write 0.2% @anthropic-ai/claude-code Apr 21

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial