AI Component

Training Data

Training data is both the model's most valuable input and its most underprotected one. Three problem classes dominate. First, poisoning: an attacker who can influence a public dataset, a web crawl, or a fine-tuning corpus can plant backdoors or biases that survive into the deployed model — BadNets-style attacks on image classifiers, trigger-phrase attacks on LLMs, and reward-hacking on RLHF datasets. Second, memorization and leakage: models can regurgitate verbatim training data, exposing PII and copyrighted content; this has driven the active New York Times v. OpenAI litigation and is a recurring GDPR concern. Third, provenance: when training data origins are unclear, downstream users inherit legal and security risk they can't assess. EU AI Act Article 10 (Data Governance) and ISO 42001 Annex A treat training-data quality as a controlled asset. Defenses: data lineage tracking, deduplication, PII scrubbing before training, and adversarial training against known trigger families.

196
Total CVEs
10
Pages
Page 9 of 10
Current
Severity CVE CVSS
MEDIUM CVE-2026-1839 6.5
HIGH GHSA-89gg-p5r5-q6r4 7.7
HIGH CVE-2026-6859 8.8
HIGH CVE-2026-41486 -
HIGH CVE-2026-40171 -
UNKNOWN CVE-2026-31249 -
UNKNOWN CVE-2026-31250 -
HIGH CVE-2026-31253 7.3
HIGH CVE-2026-2614 7.5
CRITICAL CVE-2026-31214 9.8
UNKNOWN CVE-2026-31218 -
UNKNOWN CVE-2026-31219 -
HIGH CVE-2026-31222 8.8
HIGH GHSA-7j65-65cr-6644 -
HIGH CVE-2026-2652 8.6
HIGH CVE-2026-8756 7.3
HIGH CVE-2026-43624 8.2
HIGH CVE-2026-5422 8.1
LOW CVE-2026-10801 3.6
LOW CVE-2026-10803 3.6

Page 9 of 10