AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

2

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 973 results — no patch

Severity CVE ID Summary CVSS EPSS Package Date

CRIT CVE-2025-33244 NVIDIA APEX for Linux contains a vulnerability... 9.0 — — Mar 24 UNKN CVE-2026-33401 Wallos is an open-source, self-hostable personal... — — — Mar 24 HIGH CVE-2026-33484 Langflow is a tool for building and deploying... 7.5 — langflow Mar 24 CRIT CVE-2026-33475 Langflow is a tool for building and deploying... 9.1 — langflow Mar 24 MEDI CVE-2026-30886 New API is a large language mode (LLM) gateway... 6.5 — — Mar 23 MEDI CVE-2026-4538 A vulnerability was identified in PyTorch 2.10.0.... 5.3 — — Mar 22 HIGH CVE-2026-33053 Langflow is a tool for building and deploying... 8.8 0.0% langflow Mar 20 CRIT CVE-2026-33017 Langflow is a tool for building and deploying... 9.8 0.5% langflow Mar 20 HIGH CVE-2026-33236 NLTK has a Downloader Path Traversal... 8.1 0.0% — Mar 19 HIGH CVE-2026-33155 DeepDiff has Memory Exhaustion DoS through... — 0.0% — Mar 18 CRIT CVE-2026-28500 Open Neural Network Exchange (ONNX) is an open... 9.1 0.0% onnx Mar 18 UNKN CVE-2026-25083 GROWI OpenAI thread/message API endpoints do not... — — — Mar 16 CRIT CVE-2026-25960 vLLM is an inference and serving engine for large... 9.8 0.0% vllm Mar 9 CRIT CVE-2026-30821 Flowise is a drag & drop user interface to build... 9.8 — — Mar 7 MEDI CVE-2026-2589 The Greenshift – animation and page builder... 5.3 — — Mar 6 HIGH CVE-2026-25750 Langchain Helm Charts are Helm charts for... 8.1 — langsmith Mar 4 HIGH CVE-2026-27905 BentoML is a Python library for building online... 7.8 0.0% bentoml Mar 3 HIGH CVE-2026-28416 Gradio is an open-source Python package designed... 8.6 0.0% gradio Feb 27 MEDI CVE-2026-28415 Gradio is an open-source Python package designed... 4.7 0.0% gradio Feb 27 HIGH CVE-2026-28414 Gradio is an open-source Python package designed... 7.5 0.0% gradio Feb 27 MEDI CVE-2026-27167 Gradio is an open-source Python package designed... 5.9 0.0% gradio Feb 27 CRIT CVE-2026-27966 Langflow is a tool for building and deploying... 9.8 0.2% langflow Feb 26 MEDI CVE-2026-27578 n8n is an open source workflow automation... 5.4 — n8n Feb 25 CRIT CVE-2026-27577 n8n is an open source workflow automation... 9.9 — n8n Feb 25 HIGH CVE-2026-27498 n8n is an open source workflow automation... 8.8 — n8n Feb 25 HIGH CVE-2026-27497 n8n is an open source workflow automation... 8.8 — n8n Feb 25 CRIT CVE-2026-27495 n8n is an open source workflow automation... 9.9 — n8n Feb 25 CRIT CVE-2026-27494 n8n is an open source workflow automation... 9.9 — n8n Feb 25 CRIT CVE-2026-27493 n8n is an open source workflow automation... 9.0 — n8n Feb 25 MEDI CVE-2026-27794 LangGraph: BaseCache Deserialization of Untrusted... 6.6 0.3% — Feb 25 MEDI CVE-2026-27795 LangChain is a framework for building LLM-powered... 4.1 — — Feb 25 UNKN CVE-2026-2492 TensorFlow HDF5 Library Uncontrolled Search Path... — — — Feb 20 HIGH CVE-2026-2472 Google Cloud Vertex AI SDK affected by Stored... — 0.1% — Feb 20 HIGH CVE-2026-26286 SillyTavern is a locally installed user interface... 8.5 — — Feb 19 MEDI CVE-2025-12343 A flaw was found in FFmpeg’s TensorFlow backend... 5.5 — — Feb 18 CRIT CVE-2026-2654 A weakness has been identified in huggingface... 9.8 — smolagents Feb 18 HIGH CVE-2026-1669 Arbitrary file read in the model loading... 7.5 0.0% keras Feb 11 MEDI CVE-2026-26019 LangChain is a framework for building LLM-powered... 4.1 — langchain_community Feb 11 LOW CVE-2026-26013 LangChain is a framework for building agents and... 3.7 0.0% langchain_core Feb 10 MEDI CVE-2026-25631 n8n is an open source workflow automation... 6.5 — n8n Feb 6 HIGH CVE-2026-21893 n8n is an open source workflow automation... 7.2 — n8n Feb 4 CRIT CVE-2026-25115 n8n is an open source workflow automation... 9.9 — n8n Feb 4 HIGH CVE-2026-25056 n8n is an open source workflow automation... 8.8 — n8n Feb 4 HIGH CVE-2026-25055 n8n is an open source workflow automation... 8.1 — n8n Feb 4 MEDI CVE-2026-25054 n8n is an open source workflow automation... 5.4 — n8n Feb 4 CRIT CVE-2026-25053 n8n is an open source workflow automation... 9.9 — n8n Feb 4 CRIT CVE-2026-25052 n8n is an open source workflow automation... 9.9 — n8n Feb 4 MEDI CVE-2026-25051 n8n is an open source workflow automation... 5.4 — n8n Feb 4 CRIT CVE-2026-25049 n8n is an open source workflow automation... 9.9 — n8n Feb 4 HIGH CVE-2025-61917 n8n is an open source workflow automation... 7.7 — n8n Feb 4

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial