AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,604

AI/ML CVEs Tracked

225

Critical

New This Week

In CISA KEV

Sort: Date CVSS EPSS KEV first Most exploited

Filter: All Critical High Medium KEV only Active exploitation Has patch No patch

Latest AI Security Threats

Showing 20 of 167 results — Critical severity, no patch

CRITICAL

cline: WebSocket auth bypass enables terminal RCE

CVE-2026-44211

9.6

Yesterday

Auth Bypass Code Execution Data Leakage Agent Plugin

CWE-306 7 ATLAS

CRITICAL

LiteLLM: SQL injection exposes LLM API credentials

Auth Bypass Data Extraction Supply Chain API Inference

litellm CWE-89 4 5 ATLAS

CRITICAL

pytorch-lightning: supply chain, credential harvesting

CVE-2026-44484

3d ago

Supply Chain Data Extraction Code Execution Framework

pytorch-lightning CWE-506 1.6K 5 ATLAS

CRITICAL

Ollama: heap OOB read leaks API keys and chat data

Data Extraction Data Leakage Auth Bypass Inference Model

ollama 1.5K 5 ATLAS

CRITICAL

Gemini CLI: RCE via malicious workspace in CI/CD

GHSA-wpqr-6v78-jr5g

10.0

2w ago

Code Execution Prompt Injection Supply Chain Agent Framework

CWE-20 7 ATLAS

CRITICAL EXPLOIT AVAIL

Flowise: auth bypass enables full account takeover via reset

Auth Bypass Data Extraction Code Execution Agent Framework

flowise CWE-287 5 ATLAS

CRITICAL EXPLOIT AVAIL

Flowise: unauthenticated RCE via NODE_OPTIONS env injection

Code Execution Auth Bypass Agent Framework

flowise 6 ATLAS

CRITICAL EXPLOIT AVAIL

Flowise: mass assignment auth bypass in registration

Auth Bypass Data Extraction Privacy Violation Agent Framework

flowise CWE-639 5 ATLAS

CRITICAL EXPLOIT AVAIL

Flowise: RCE via prompt injection in Airtable Agent

Prompt Injection Code Execution Agent Framework

flowise 7 ATLAS

CRITICAL EXPLOIT AVAIL

OpenAI Codex CLI: RCE via malicious MCP config files

Code Execution Supply Chain Agent Plugin

@openai/codex CWE-94 3.7K 5 ATLAS

CRITICAL EXPLOIT AVAIL

Claude Code: OS command injection, credential theft

Code Execution Data Extraction Supply Chain Agent API Framework

CWE-78 8 ATLAS

CRITICAL EXPLOIT AVAIL

Budibase: Unauthenticated RCE as root via webhook

Code Execution Auth Bypass Data Extraction Framework Agent

CWE-78 8 ATLAS

CRITICAL EXPLOIT AVAIL

MLflow: auth bypass in job API enables unauthenticated RCE

Auth Bypass Code Execution DoS Framework Training Data

mlflow CWE-306 624 5 ATLAS

CRITICAL EXPLOIT AVAIL

MLflow: command injection via model_uri in mlserver mode

Code Execution Supply Chain Framework Inference

CWE-78 4 ATLAS 1 incident

CRITICAL

telnyx: PyPI supply chain attack steals cloud creds

GHSA-955r-262c-33jc

1mo ago

Supply Chain Code Execution Data Extraction Framework API Agent

CWE-506 7 ATLAS 2 incidents

CRITICAL

litellm: supply chain attack harvests AI API credentials

GHSA-5mg7-485q-xm76

1mo ago

Supply Chain Data Extraction Code Execution Framework API Agent

litellm CWE-506 4 8 ATLAS

CRITICAL

NVIDIA: Deserialization enables RCE

Code Execution Supply Chain Data Extraction Framework Training Data

CWE-502 5 ATLAS

CRITICAL EXPLOIT AVAIL

langflow: security flaw enables exploitation

Supply Chain Code Execution Data Extraction Framework Agent

langflow CWE-74 5 ATLAS

CRITICAL KEV

langflow: Code Injection enables RCE

Model Poisoning Code Execution Framework Agent API

langflow CWE-95 6 ATLAS

CRITICAL EXPLOIT AVAIL

onnx: Integrity Verification bypass enables tampering

Supply Chain Model Poisoning Code Execution Framework RAG API

onnx CWE-345 1.2K 10 ATLAS

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial

AI Security Threat Feed

Weekly CISO Take + top threats

Latest AI Security Threats

Need deeper analysis?