AI Component

Training Data

Training data is both the model's most valuable input and its most underprotected one. Three problem classes dominate. First, poisoning: an attacker who can influence a public dataset, a web crawl, or a fine-tuning corpus can plant backdoors or biases that survive into the deployed model — BadNets-style attacks on image classifiers, trigger-phrase attacks on LLMs, and reward-hacking on RLHF datasets. Second, memorization and leakage: models can regurgitate verbatim training data, exposing PII and copyrighted content; this has driven the active New York Times v. OpenAI litigation and is a recurring GDPR concern. Third, provenance: when training data origins are unclear, downstream users inherit legal and security risk they can't assess. EU AI Act Article 10 (Data Governance) and ISO 42001 Annex A treat training-data quality as a controlled asset. Defenses: data lineage tracking, deduplication, PII scrubbing before training, and adversarial training against known trigger families.

196
Total CVEs
10
Pages
Page 7 of 10
Current
Severity CVE CVSS
HIGH CVE-2025-46567 7.8
HIGH CVE-2025-61784 8.1
MEDIUM CVE-2024-5206 4.7
MEDIUM CVE-2024-55459 6.5
CRITICAL CVE-2025-12060 9.8
UNKNOWN CVE-2025-12638 -
HIGH CVE-2024-43598 8.1
MEDIUM GHSA-5cxw-w2xg-2m8h -
LOW GHSA-83pf-v6qq-pwmr -
HIGH CVE-2026-1777 7.2
MEDIUM GHSA-m7j5-r2p5-c39r -
HIGH CVE-2026-22033 -
HIGH CVE-2026-22612 -
HIGH GHSA-9726-w42j-3qjr -
CRITICAL CVE-2025-33244 9.0
CRITICAL CVE-2025-34351 -
MEDIUM CVE-2025-8917 5.8
CRITICAL CVE-2023-48022 9.8
HIGH CVE-2025-58757 8.8
HIGH CVE-2025-58756 8.8

Page 7 of 10