AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 1140 results

Severity CVE ID Summary CVSS EPSS Package Date

CRIT CVE-2025-54950 ExecuTorch out-of-bounds access vulnerability 9.8 0.2% executorch Aug 8 MEDI CVE-2025-54952 ExecuTorch integer overflow vulnerability leads... — 0.2% executorch Aug 8 CRIT CVE-2025-54951 ExecuTorch vulnerable to Heap-based Buffer... 9.8 0.2% executorch Aug 8 CRIT CVE-2025-53767 Azure OpenAI Elevation of Privilege Vulnerability 10.0 — azure_openai Aug 7 MEDI CVE-2025-44779 An issue in Ollama v0.1.33 allows attackers to... 6.6 — ollama Aug 7 MEDI CVE-2025-5197 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Aug 6 CRIT CVE-2025-45150 Insecure permissions in LangChain-ChatGLM-Webui... 9.8 — langchain-chatglm-webui Aug 1 HIGH CVE-2025-7725 The Photos, Files, YouTube, Twitter, Instagram,... 7.2 — — Aug 1 MEDI GHSA-r54c-2xmf-2cf3 MS SWIFT Deserialization RCE Vulnerability — — — Jul 31 CRIT CVE-2025-54381 BentoML is a Python library for building online... 9.9 0.5% bentoml Jul 29 CRIT CVE-2025-46059 langchain-ai v0.3.51 was discovered to contain an... 9.8 — — Jul 29 CRIT CVE-2025-5120 A sandbox escape vulnerability was identified in... 10.0 0.3% smolagents Jul 27 HIGH CVE-2025-54413 skops is a Python library which helps users share... — 0.0% — Jul 26 HIGH CVE-2025-54412 skops is a Python library which helps users share... — 0.0% — Jul 26 MEDI CVE-2025-54558 OpenAI Codex CLI before 0.9.0 auto-approves... 4.1 — — Jul 25 MEDI CVE-2025-7780 The AI Engine plugin for WordPress is vulnerable... 6.5 — — Jul 24 MEDI CVE-2025-51471 Cross-Domain Token Exposure in... 6.9 — ollama Jul 22 MEDI CVE-2025-51481 Dagster Local File Inclusion vulnerability 6.6 0.0% — Jul 22 MEDI CVE-2025-53621 DSpace open source software is a repository... 6.9 — — Jul 15 HIGH CVE-2025-30402 ExecuTorch vulnerable to Heap-based Buffer... 8.1 0.1% executorch Jul 11 MEDI CVE-2025-3933 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Jul 11 MEDI CVE-2025-6716 The Photos, Files, YouTube, Twitter, Instagram,... 6.4 — — Jul 11 MEDI CVE-2025-7021 Fullscreen API Spoofing and UI Redressing in the... 6.5 — operator Jul 10 MEDI CVE-2025-6211 LlamaIndex vulnerable to data loss through hash... 6.5 0.1% llama-index Jul 10 HIGH CVE-2025-6209 LlamaIndex vulnerable to Path Traversal attack... 7.5 0.1% llama-index-core Jul 7 HIGH CVE-2025-6386 Lord of Large Language Models vulnerable to... 7.5 0.1% lollms Jul 7 MEDI CVE-2025-6210 LlamaIndex vulnerability in its ObsidianReader... 6.2 0.0% — Jul 7 MEDI CVE-2025-5472 LlamaIndex vulnerable to DoS attack through... 6.5 0.1% llama-index-core Jul 7 HIGH CVE-2025-3225 LlamaIndex has an XML Entity Expansion... 7.5 0.1% — Jul 7 MEDI CVE-2025-3044 LlamaIndex vulnerability in ArxivReader class can... 5.3 0.1% — Jul 7 HIGH CVE-2025-3046 LlamaIndex is vulnerable to Path Traversal attack... 7.5 0.1% — Jul 7 LOW CVE-2025-3777 Hugging Face Transformers versions up to 4.49.0... 3.5 0.0% transformers Jul 7 MEDI CVE-2025-3264 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Jul 7 MEDI CVE-2025-3263 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Jul 7 HIGH CVE-2025-3262 A Regular Expression Denial of Service (ReDoS)... 7.5 0.1% transformers Jul 7 MEDI CVE-2025-3108 LlamaIndex has Incomplete Documentation of... 5.0 1.1% llama-index-core Jul 7 MEDI CVE-2025-52554 n8n is a workflow automation platform. Prior to... 4.3 — n8n Jul 3 MEDI CVE-2025-45809 SQL Injection vulnerability in BerriAI LiteLLM... 5.4 — litellm Jul 3 MEDI CVE-2025-49595 n8n is a workflow automation platform. Prior to... 4.9 — n8n Jul 3 UNKN CVE-2025-34072 A data exfiltration vulnerability exists in... — — — Jul 2 HIGH CVE-2025-6855 A vulnerability, which was classified as... 8.8 0.2% langchain-chatchat Jun 29 MEDI CVE-2025-6854 A vulnerability classified as problematic was... 4.3 0.1% langchain-chatchat Jun 29 CRIT CVE-2025-6853 A vulnerability classified as critical has been... 9.8 0.2% langchain-chatchat Jun 29 MEDI CVE-2025-49592 n8n is a workflow automation platform. Versions... 5.4 — n8n Jun 26 CRIT CVE-2025-53002 LLaMA-Factory is a tuning library for large... 9.8 1.6% llamafactory Jun 26 CRIT CVE-2025-2828 A Server-Side Request Forgery (SSRF)... 10.0 0.1% langchain Jun 23 MEDI CVE-2025-52967 gateway_proxy_handler in MLflow before 3.1.0... 5.8 0.1% mlflow Jun 23 HIGH CVE-2025-5018 The Hive Support plugin for WordPress is... 7.1 — — Jun 6 CRIT CVE-2025-1793 llama_index vulnerable to SQL Injection 9.8 0.0% llama-index Jun 5 HIGH CVE-2025-30167 Jupyter Core on Windows Has Uncontrolled Search... 7.3 0.0% — Jun 4

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial