AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

2

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 167 results — has patch

Severity CVE ID Summary CVSS EPSS Package Date

MEDI GHSA-x696-vm39-cp64 Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-g344-hcph-8vgg Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-5qwp-399c-mjwf Picklescan has a missing detection when calling... — — picklescan Aug 26 HIGH CVE-2025-5302 LlamaIndex affected by a Denial of Service (DOS)... 8.6 0.1% llama-index-core Aug 26 HIGH CVE-2025-57809 XGrammar affected by Denial of Service by... 7.5 0.0% xgrammar Aug 25 MEDI GHSA-vv6j-3g6g-2pvj Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-vr7h-p6mm-wpmh Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-h3qp-7fh3-f8h4 Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-f745-w6jp-hpxx Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-f4x7-rfwp-v3xw Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-86cj-95qr-2p4f Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-4r9r-ch6f-vxmx Picklescan missing detection when calling pytorch... — — picklescan Aug 22 HIGH CVE-2025-9141 vLLM has remote code execution vulnerability in... 8.8 — vllm Aug 21 HIGH GHSA-9gvj-pp9x-gcfr Picklescan has pickle parsing logic flaw that... — — picklescan Aug 12 CRIT CVE-2025-30404 ExecuTorch integer overflow vulnerability 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54950 ExecuTorch out-of-bounds access vulnerability 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54951 ExecuTorch vulnerable to Heap-based Buffer... 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54949 ExecuTorch heap buffer overflow vulnerability 9.8 0.2% executorch Aug 8 CRIT CVE-2025-30405 ExecuTorch integer overflow vulnerability 9.8 0.2% executorch Aug 8 HIGH CVE-2025-30402 ExecuTorch vulnerable to Heap-based Buffer... 8.1 0.1% executorch Jul 11 MEDI CVE-2025-6211 LlamaIndex vulnerable to data loss through hash... 6.5 0.1% llama-index Jul 10 HIGH CVE-2025-6209 LlamaIndex vulnerable to Path Traversal attack... 7.5 0.1% llama-index-core Jul 7 MEDI CVE-2025-5472 LlamaIndex vulnerable to DoS attack through... 6.5 0.1% llama-index-core Jul 7 MEDI CVE-2025-3108 LlamaIndex has Incomplete Documentation of... 5.0 1.1% llama-index-core Jul 7 MEDI CVE-2025-52967 gateway_proxy_handler in MLflow before 3.1.0... 5.8 0.1% mlflow Jun 23 CRIT CVE-2025-1793 llama_index vulnerable to SQL Injection 9.8 0.0% llama-index Jun 5 MEDI GHSA-j828-28rj-hfhp vLLM vulnerable to Regular Expression Denial of... 4.3 — vllm May 28 HIGH CVE-2025-47783 label-studio vulnerable to Cross-Site Scripting... — 0.2% label-studio May 15 HIGH CVE-2025-1752 LlamaIndex Vulnerable to Denial of Service (DoS) 7.5 0.2% llama-index May 10 CRIT CVE-2025-47241 Browser Use allows bypassing `allowed_domains` by... 9.3 0.2% browser-use May 5 HIGH CVE-2025-46567 LLama Factory enables fine-tuning of large... 7.8 0.2% llamafactory May 1 CRIT GHSA-ggpf-24jw-3fcw CVE-2025-24357 Malicious model remote code... 9.8 — vllm Apr 23 MEDI GHSA-hf3c-wxg2-49q9 vLLM vulnerable to Denial of Service by abusing... 6.5 — vllm Apr 15 MEDI CVE-2025-32381 xgrammar Vulnerable to Denial of Service (DoS) by... 6.5 0.3% xgrammar Apr 9 MEDI GHSA-v7x6-rv5q-mhwc Picklescan missing detection when calling... — — picklescan Apr 7 MEDI GHSA-fj43-3qmq-673f Picklescan failed to detect to some unsafe global... — — picklescan Apr 7 HIGH CVE-2025-46417 Picklescan Vulnerable to Exfiltration via DNS via... — 0.2% picklescan Apr 7 MEDI CVE-2025-0508 SageMaker Workflow component allows possibility... 5.9 0.1% sagemaker Mar 20 HIGH CVE-2025-0628 LiteLLM Has an Improper Authorization... 8.1 0.1% litellm Mar 20 HIGH CVE-2024-9606 LiteLLM Reveals Portion of API Key via a Logging... 7.5 0.1% litellm Mar 20 HIGH CVE-2024-8984 LiteLLM Vulnerable to Denial of Service (DoS) via... 7.5 0.2% litellm Mar 20 HIGH CVE-2024-8060 Open WebUI allows Remote Code Execution via... 8.1 0.9% open-webui Mar 20 HIGH CVE-2024-7776 Open Neural Network Exchange (ONNX) Path... 8.1 1.5% onnx Mar 20 CRIT CVE-2024-8019 PyTorch Lightning path traversal vulnerability 9.1 1.1% pytorch-lightning Mar 20 HIGH GHSA-6wj5-5pgr-jwq8 Open WebUI Unauthenticated Multipart Boundary... 7.5 — open-webui Mar 20 HIGH CVE-2024-7806 Open WebUI Cross-Site Request Forgery (CSRF)... 8.0 0.7% open-webui Mar 20 HIGH CVE-2024-6982 LoLLMS Code Injection vulnerability 8.4 0.1% lollms Mar 20 MEDI CVE-2024-12910 LlamaIndex Uncontrolled Resource Consumption... 5.9 0.3% llama-index Mar 20 MEDI CVE-2024-10940 A vulnerability in langchain-core versions... 5.3 0.1% langchain-core Mar 20 HIGH CVE-2024-10188 A vulnerability in BerriAI/litellm, as of commit... 7.5 0.1% litellm Mar 20

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial