AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,604
AI/ML CVEs Tracked
225
Critical
78
New This Week
16
In CISA KEV
Latest AI Security Threats
Showing 20 of 225 results — Critical severity Severity CVE ID Summary CVSS EPSS Package Date
CRIT E CVE-2025-9556 langchaingo: Jinja2 SSTI allows host filesystem read 9.8 0.1% — Sep 12 CRIT E CVE-2025-55526 n8n-workflows: path traversal in download_workflow endpoint 9.1 0.6% fastapi Aug 26 CRIT E CVE-2025-54950 ExecuTorch: OOB read in model loader enables RCE 9.8 0.3% executorch Aug 8 CRIT CVE-2025-30405 ExecuTorch: integer overflow in model load → RCE 9.8 0.2% executorch Aug 8 CRIT CVE-2025-30404 ExecuTorch: integer overflow RCE on model load 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54949 ExecuTorch: heap buffer overflow RCE via model loading 9.8 0.3% executorch Aug 8 CRIT CVE-2025-54951 ExecuTorch: heap buffer overflow RCE in model loading 9.8 0.3% executorch Aug 8 CRIT E CVE-2025-53767 Azure OpenAI: SSRF EoP, no auth required (CVSS 10) 10.0 0.5% azure_openai Aug 7 CRIT E CVE-2025-45150 ChatGLM-Webui: arbitrary file read, no auth required 9.8 0.1% langchain-chatglm-webui Aug 1 CRIT E CVE-2025-54381 BentoML: unauthenticated SSRF via file upload URLs 9.9 0.7% bentoml Jul 29 CRIT E CVE-2025-46059 LangChain GmailToolkit: indirect prompt injection to RCE 9.8 0.3% — Jul 29 CRIT E CVE-2025-5120 smolagents: sandbox escape enables unauthenticated RCE 10.0 0.4% smolagents Jul 27 CRIT E CVE-2025-6853 Langchain-Chatchat: path traversal in KB upload 9.8 0.6% langchain-chatchat Jun 29 CRIT E CVE-2025-53002 LLaMA-Factory: RCE via unsafe checkpoint deserialization 9.8 4.2% llamafactory Jun 26 CRIT E CVE-2025-2828 LangChain RequestsToolkit: SSRF exposes cloud metadata 10.0 0.2% langchain Jun 23 CRIT E CVE-2025-1793 llama_index: SQL injection in vector store integrations 9.8 0.1% llama-index Jun 5 CRIT E CVE-2025-47277 vLLM: RCE via exposed TCPStore in distributed inference 9.8 0.9% vllm May 20 CRIT E CVE-2025-47241 browser-use: URL allowlist bypass enables SSRF in agents 9.3 0.2% browser-use May 5 CRIT E CVE-2025-32444 vLLM: RCE via pickle deserialization on ZeroMQ 9.8 2.5% vllm Apr 30 CRIT GHSA-ggpf-24jw-3fcw vLLM: RCE via malicious model, PyTorch < 2.6 bypass 9.8 — vllm Apr 23 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial