AI Threat Alert AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

77

New This Week

16

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited
Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 7 of 167 results — Critical severity, no patch
CRITICAL EXPLOIT AVAIL

TFLite: OOB read/write via tensor dimension mismatch

CVE-2020-15208
9.8
EPSS 0.3%
Code Execution Data Extraction Supply Chain Framework Inference
tensorflow 3.7K 3 ATLAS
CRITICAL EXPLOIT AVAIL

TFLite: OOB write via unchecked negative axis index

CVE-2020-15207
9.0
EPSS 1.4%
Code Execution DoS Framework Inference
tensorflow CWE-787 3.7K 3 ATLAS
CRITICAL EXPLOIT AVAIL

TensorFlow: heap overflow in StringNGrams, ASLR bypass

CVE-2020-15205
9.8
EPSS 0.5%
Code Execution Data Leakage Framework Inference
tensorflow CWE-787 3.7K 3 ATLAS
CRITICAL EXPLOIT AVAIL

TensorFlow: Shard API int truncation enables memory corruption

CVE-2020-15202
9.0
EPSS 0.5%
Code Execution DoS Framework Inference
tensorflow 3.7K 4 ATLAS
CRITICAL EXPLOIT AVAIL

TensorFlow: heap OOB read in sparse/ragged count ops

CVE-2020-15196
9.9
EPSS 0.3%
Code Execution Data Extraction Framework Inference Training Data
tensorflow CWE-125 3.7K 4 ATLAS
CRITICAL EXPLOIT AVAIL

scikit-learn: RCE via malicious joblib model deserialization

CVE-2020-13092
9.8
EPSS 0.9%
Code Execution Supply Chain Framework Model
scikit-learn CWE-502 28.2K 5 ATLAS
CRITICAL

TensorFlow: heap overflow in UnsortedSegmentSum op

CVE-2019-16778
9.8
EPSS 0.3%
Code Execution Supply Chain Framework Inference
tensorflow CWE-681 3.7K 3 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial