Attack Type

Code Execution

Remote code execution (RCE) vulnerabilities in AI frameworks allow attackers to execute arbitrary code on servers running ML inference, training pipelines, or AI agent frameworks.

643

Total CVEs

Pages

Page 33 of 33

Current

Severity	CVE	Headline	Package	CVSS
HIGH	CVE-2026-40149	PraisonAI: auth bypass disables agent safety controls	PraisonAI	7.9
CRITICAL	CVE-2026-1115	lollms: Stored XSS enables wormable account takeover	lollms	9.6
MEDIUM	CVE-2026-40190	langsmith: prototype pollution enables auth bypass, RCE	langsmith	5.6

Page 33 of 33

Related Attack Types

Prompt Injection Data Extraction Jailbreak Supply Chain Model Poisoning Adversarial Examples

Code Execution

Related Attack Types

Weekly CISO Take + top threats