AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 1140 results

Severity CVE ID Summary CVSS EPSS Package Date

CRIT CVE-2025-33244 NVIDIA APEX for Linux contains a vulnerability... 9.0 — — Mar 24 UNKN CVE-2026-33401 Wallos is an open-source, self-hostable personal... — — — Mar 24 HIGH CVE-2026-33497 Langflow is a tool for building and deploying... 7.5 — langflow Mar 24 HIGH CVE-2026-33484 Langflow is a tool for building and deploying... 7.5 — langflow Mar 24 CRIT CVE-2026-33475 Langflow is a tool for building and deploying... 9.1 — langflow Mar 24 CRIT CVE-2026-33309 Langflow is a tool for building and deploying... 9.9 — langflow Mar 24 MEDI CVE-2026-30886 New API is a large language mode (LLM) gateway... 6.5 — — Mar 23 MEDI CVE-2026-4538 A vulnerability was identified in PyTorch 2.10.0.... 5.3 — — Mar 22 HIGH CVE-2026-33053 Langflow is a tool for building and deploying... 8.8 0.0% langflow Mar 20 CRIT CVE-2026-33017 Langflow is a tool for building and deploying... 9.8 0.5% langflow Mar 20 HIGH CVE-2026-33236 NLTK has a Downloader Path Traversal... 8.1 0.0% — Mar 19 CRIT CVE-2025-15031 A vulnerability in MLflow's pyfunc extraction... 9.1 0.0% mlflow Mar 18 HIGH CVE-2026-33155 DeepDiff has Memory Exhaustion DoS through... — 0.0% — Mar 18 CRIT CVE-2026-28500 Open Neural Network Exchange (ONNX) is an open... 9.1 0.0% onnx Mar 18 UNKN CVE-2026-25083 GROWI OpenAI thread/message API endpoints do not... — — — Mar 16 HIGH CVE-2025-14287 A command injection vulnerability exists in... 7.5 0.1% mlflow Mar 16 MEDI GHSA-5cxw-w2xg-2m8h fickling's `platform` module subprocess... — — fickling Mar 13 MEDI GHSA-r48f-3986-4f9c fickling modules linecache, difflib and gc are... — — fickling Mar 13 CRIT CVE-2026-27825 MCP Atlassian has an arbitrary file write leading... 9.1 0.0% mcp-atlassian Mar 10 HIGH CVE-2026-27826 MCP Atlassian has SSRF via unvalidated... 8.2 0.1% mcp-atlassian Mar 10 CRIT CVE-2026-25960 vLLM is an inference and serving engine for large... 9.8 0.0% vllm Mar 9 CRIT CVE-2026-30821 Flowise is a drag & drop user interface to build... 9.8 — — Mar 7 MEDI CVE-2026-2589 The Greenshift – animation and page builder... 5.3 — — Mar 6 HIGH GHSA-5r2p-pjr8-7fh7 SageMaker Python SDK replaced eval() with safe... — — sagemaker Mar 5 MEDI CVE-2026-28277 LangGraph checkpoint loading has unsafe msgpack... 6.8 0.0% langgraph Mar 5 HIGH CVE-2026-25048 xgrammar vulnerable to DoS via multi-layer nesting — 0.1% xgrammar Mar 5 HIGH CVE-2026-25750 Langchain Helm Charts are Helm charts for... 8.1 — langsmith Mar 4 HIGH GHSA-5hwf-rc88-82xm Fickling missing RCE-capable modules in... — — fickling Mar 4 HIGH GHSA-wccx-j62j-r448 Fickling has `always_check_safety()` bypass:... — — fickling Mar 4 HIGH CVE-2026-27905 BentoML is a Python library for building online... 7.8 0.0% bentoml Mar 3 CRIT GHSA-g38g-8gr9-h9xp PickleScan has multiple stdlib modules with... 9.8 — picklescan Mar 3 CRIT GHSA-vvpj-8cmc-gx39 PickleScan's pkgutil.resolve_name has a universal... 10.0 — picklescan Mar 3 CRIT GHSA-7wx9-6375-f5wh PickleScan's profile.run blocklist mismatch... 9.8 — picklescan Mar 3 HIGH CVE-2026-28416 Gradio is an open-source Python package designed... 8.6 0.0% gradio Feb 27 MEDI CVE-2026-28415 Gradio is an open-source Python package designed... 4.7 0.0% gradio Feb 27 HIGH CVE-2026-28414 Gradio is an open-source Python package designed... 7.5 0.0% gradio Feb 27 MEDI CVE-2026-27167 Gradio is an open-source Python package designed... 5.9 0.0% gradio Feb 27 CRIT CVE-2026-27966 Langflow is a tool for building and deploying... 9.8 0.2% langflow Feb 26 MEDI CVE-2026-27578 n8n is an open source workflow automation... 5.4 — n8n Feb 25 CRIT CVE-2026-27577 n8n is an open source workflow automation... 9.9 — n8n Feb 25 HIGH CVE-2026-27498 n8n is an open source workflow automation... 8.8 — n8n Feb 25 HIGH CVE-2026-27497 n8n is an open source workflow automation... 8.8 — n8n Feb 25 CRIT CVE-2026-27495 n8n is an open source workflow automation... 9.9 — n8n Feb 25 CRIT CVE-2026-27494 n8n is an open source workflow automation... 9.9 — n8n Feb 25 CRIT CVE-2026-27493 n8n is an open source workflow automation... 9.0 — n8n Feb 25 MEDI CVE-2026-27794 LangGraph: BaseCache Deserialization of Untrusted... 6.6 0.3% — Feb 25 MEDI CVE-2026-27795 LangChain is a framework for building LLM-powered... 4.1 — — Feb 25 MEDI GHSA-mhc9-48gj-9gp3 Fickling has safety check bypass via REDUCE+BUILD... — — fickling Feb 25 HIGH GHSA-mxhj-88fx-4pcv Fickling: OBJ opcode call invisibility bypasses... — — fickling Feb 24 CRIT CVE-2026-2635 MLflow Use of Default Password Authentication... 9.8 0.7% mlflow Feb 20

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial