AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

78

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 1604 results
MEDIUM EXPLOIT AVAIL

TensorFlow: DoS via div-by-zero in conv cost estimator

CVE-2022-21725
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow CWE-369 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: integer overflow DoS in sparse tensor ops

CVE-2022-23568
6.5
EPSS 0.3%
DoS Framework Inference
tensorflow CWE-190 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: integer overflow DoS in sparse tensor ops

CVE-2022-23567
6.5
EPSS 0.4%
DoS Framework Inference
tensorflow CWE-190 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: NULL deref DoS via SparseTensorSliceDataset

CVE-2022-21736
6.5
EPSS 0.3%
DoS Framework Inference
tensorflow CWE-476 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: StringNGrams integer overflow enables OOM DoS

CVE-2022-21733
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow CWE-190 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: ThreadPoolHandle DoS via memory exhaustion

CVE-2022-21732
6.5
EPSS 0.2%
DoS Framework Inference
tensorflow CWE-770 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: ConcatV2 type confusion enables remote DoS

CVE-2022-21731
6.5
EPSS 0.3%
DoS Framework Inference
tensorflow CWE-843 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: OOB read leaks heap memory, enables DoS

CVE-2022-21730
8.1
EPSS 0.3%
Data Extraction DoS Code Execution Framework Inference Training Data
tensorflow CWE-125 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: heap OOB read in ReverseSequence op

CVE-2022-21728
8.1
EPSS 1.1%
DoS Data Leakage Framework Inference
tensorflow CWE-125 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: Dequantize integer overflow, RCE risk

CVE-2022-21727
8.8
EPSS 0.3%
Code Execution DoS Framework Inference
tensorflow CWE-190 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: heap OOB read in Dequantize op allows RCE

CVE-2022-21726
8.8
EPSS 0.3%
Code Execution Data Extraction Framework Inference
tensorflow CWE-125 3.7K 2 ATLAS
HIGH EXPLOIT AVAIL

pytorch-lightning: deserialization RCE via malicious checkpoint

CVE-2021-4118
7.8
EPSS 0.3%
Code Execution Supply Chain Framework Training Data
pytorch_lightning 21.7K 4 ATLAS
HIGH EXPLOIT AVAIL SCANNER

Gradio: path traversal exposes host filesystem to users

CVE-2021-43831
7.7
EPSS 30.3%
Data Extraction Privacy Violation Framework Inference
gradio CWE-22 674 4 ATLAS
HIGH EXPLOIT AVAIL

Sockeye: unsafe YAML load RCE via model config file

CVE-2021-43811
7.8
EPSS 8.7%
Supply Chain Code Execution Framework Model
4 ATLAS
HIGH

nbdime: stored XSS in Jupyter notebook diff viewer

CVE-2021-41134
8.7
EPSS 0.3%
Code Execution Data Extraction Framework
CWE-79 4 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: eval() in saved_model_cli allows RCE

CVE-2021-41228
7.8
EPSS 0.0%
Code Execution Supply Chain Framework Training Data
tensorflow CWE-94 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: OOB read in ImmutableConst leaks memory

CVE-2021-41227
5.5
EPSS 0.1%
Data Extraction Supply Chain Framework Inference
tensorflow CWE-125 3.7K 4 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow Grappler: uninitialized var, local priv-esc

CVE-2021-41225
7.8
EPSS 0.0%
Code Execution Supply Chain Framework Training Data
tensorflow 3.7K 3 ATLAS
MEDIUM EXPLOIT AVAIL

TensorFlow: SplitV negative arg segfault crashes process

CVE-2021-41222
5.5
EPSS 0.0%
DoS Framework Inference
tensorflow 3.7K 3 ATLAS
HIGH EXPLOIT AVAIL

TensorFlow: CuDNN heap overflow, local code execution

CVE-2021-41221
7.8
EPSS 0.0%
Code Execution Framework Training Data
tensorflow CWE-787 3.7K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial