AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

77

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
HIGH EXPLOIT AVAIL

TensorFlow: GPU input validation DoS in bbox proposals

CVE-2022-41888
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: int32 overflow crashes Poisson loss function

CVE-2022-41887
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: integer overflow in image op causes DoS

CVE-2022-41886
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: FusedResizeAndPadConv2D overflow causes DoS

CVE-2022-41885
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow CWE-131 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: DoS via malformed numpy array shape

CVE-2022-41884
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
CRITICAL EXPLOIT AVAIL

TensorFlow: heap OOB read in candidate sampler op

CVE-2022-41880
9.1
EPSS 0.2%
Data Extraction DoS Code Execution Framework Inference Training Data
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: executor crash via malformed op inputs (DoS)

CVE-2022-41883
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

Label Studio: SSRF + file read, self-reg bypass

CVE-2022-36551
6.5
EPSS 9.2%
Data Extraction Auth Bypass Data Leakage Training Data Framework
label-studio Patch: 1.6.0 CWE-918 1 6 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: DoS crash in transposed conv quantization

CVE-2022-36027
7.5
EPSS 0.3%
DoS Framework
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: DoS via malformed Requantize tensors

CVE-2022-36017
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: CHECK-fail assertion crashes model serving

CVE-2022-36016
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: integer overflow in RangeSize causes DoS

CVE-2022-36015
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: null ptr dereference in MLIR causes remote DoS

CVE-2022-36014
7.5
EPSS 0.3%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow MLIR: null ptr deref crashes model serving

CVE-2022-36013
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: DoS via empty MLIR function attributes

CVE-2022-36012
7.5
EPSS 0.2%
DoS Framework Inference
tensorflow CWE-617 3.7K 3 ATLAS
HIGH

TensorFlow: null deref DoS in MLIR function conversion

CVE-2022-36011
7.5
EPSS 0.1%
DoS Supply Chain Framework Inference
tensorflow 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: DoS via CHECK fail in fake_quant gradient

CVE-2022-36005
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: DoS via tf.random.gamma CHECK assertion

CVE-2022-36004
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: DoS via RandomPoissonV2 large input

CVE-2022-36003
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH

TensorFlow: DoS via Unbatch assertion failure

CVE-2022-36002
7.5
EPSS 0.1%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial