AI Component

Training Data

Training data is both the model's most valuable input and its most underprotected one. Three problem classes dominate. First, poisoning: an attacker who can influence a public dataset, a web crawl, or a fine-tuning corpus can plant backdoors or biases that survive into the deployed model — BadNets-style attacks on image classifiers, trigger-phrase attacks on LLMs, and reward-hacking on RLHF datasets. Second, memorization and leakage: models can regurgitate verbatim training data, exposing PII and copyrighted content; this has driven the active New York Times v. OpenAI litigation and is a recurring GDPR concern. Third, provenance: when training data origins are unclear, downstream users inherit legal and security risk they can't assess. EU AI Act Article 10 (Data Governance) and ISO 42001 Annex A treat training-data quality as a controlled asset. Defenses: data lineage tracking, deduplication, PII scrubbing before training, and adversarial training against known trigger families.

196
Total CVEs
10
Pages
Page 6 of 10
Current
Severity CVE CVSS
CRITICAL CVE-2024-27132 9.6
HIGH CVE-2024-1483 7.5
HIGH CVE-2024-1560 8.1
HIGH CVE-2024-1593 7.5
HIGH CVE-2024-1594 7.5
MEDIUM CVE-2024-4263 5.4
HIGH CVE-2024-37060 8.8
HIGH CVE-2024-37061 8.8
HIGH CVE-2024-0520 8.8
HIGH CVE-2024-2928 7.5
HIGH CVE-2024-27134 7.0
HIGH CVE-2024-8859 7.5
HIGH CVE-2025-1473 7.1
MEDIUM CVE-2025-1474 5.5
CRITICAL CVE-2025-11200 9.8
HIGH CVE-2025-10279 7.0
MEDIUM CVE-2023-2800 4.7
HIGH CVE-2025-33213 8.8
HIGH CVE-2025-33233 7.8
CRITICAL CVE-2024-52803 9.8

Page 6 of 10