AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 524 results — High severity

Severity CVE ID Summary CVSS EPSS Package Date

HIGH CVE-2025-55560 An issue in pytorch v2.7.0 can lead to a Denial... 7.5 — pytorch Sep 25 HIGH CVE-2025-55559 An issue was discovered TensorFlow v2.18.0. A... 7.5 — tensorflow Sep 25 HIGH CVE-2025-55558 A buffer overflow occurs in pytorch v2.7.0 when a... 7.5 — pytorch Sep 25 HIGH CVE-2025-55557 A Name Error occurs in pytorch v2.7.0 when a... 7.5 — pytorch Sep 25 HIGH CVE-2025-55553 A syntax error in the component proxy_tensor.py... 7.5 — pytorch Sep 25 HIGH CVE-2025-55552 pytorch v2.8.0 was discovered to display... 7.5 — pytorch Sep 25 HIGH CVE-2025-55551 An issue in the component torch.linalg.lu of... 7.5 — pytorch Sep 25 HIGH CVE-2025-6921 The huggingface/transformers library, versions... 7.5 0.0% transformers Sep 23 HIGH CVE-2025-9906 The Keras Model.load_model method can be... 7.3 0.1% keras Sep 19 HIGH CVE-2025-9905 The Keras Model.load_model method can be... 7.3 0.0% keras Sep 19 HIGH CVE-2025-10155 An Improper Input Validation vulnerability in the... 7.8 0.0% picklescan Sep 17 HIGH CVE-2025-6638 A Regular Expression Denial of Service (ReDoS)... 7.5 0.0% transformers Sep 12 HIGH CVE-2025-10156 Picklescan: ZIP archive scan bypass is possible... 7.5 0.4% picklescan Sep 10 HIGH CVE-2025-10157 Picklescan is Vulnerable to Unsafe Globals Check... 8.3 0.1% picklescan Sep 10 HIGH CVE-2025-58757 Monai: Unsafe use of Pickle deserialization may... 8.8 0.6% monai Sep 9 HIGH CVE-2025-58756 MONAI: Unsafe torch usage may lead to arbitrary... 8.8 1.2% monai Sep 9 HIGH CVE-2025-58755 MONAI does not prevent path traversal,... 8.8 0.1% monai Sep 9 HIGH CVE-2025-56265 An arbitrary file upload vulnerability in the... 8.8 — n8n Sep 8 HIGH CVE-2025-6984 The langchain-ai/langchain project, specifically... 7.5 2.1% langchain-community Sep 4 HIGH CVE-2025-5302 LlamaIndex affected by a Denial of Service (DOS)... 8.6 0.1% llama-index-core Aug 26 HIGH CVE-2025-57809 XGrammar affected by Denial of Service by... 7.5 0.0% xgrammar Aug 25 HIGH CVE-2025-57760 Langflow is a tool for building and deploying... 8.8 0.0% langflow Aug 25 HIGH CVE-2025-48956 vLLM is an inference and serving engine for large... 7.5 0.4% vllm Aug 21 HIGH CVE-2025-9141 vLLM has remote code execution vulnerability in... 8.8 — vllm Aug 21 HIGH CVE-2025-23298 NVIDIA Merlin Transformers4Rec for all platforms... 7.8 — — Aug 13 HIGH GHSA-9gvj-pp9x-gcfr Picklescan has pickle parsing logic flaw that... — — picklescan Aug 12 HIGH CVE-2025-8747 A safe mode bypass vulnerability in the... 7.8 0.0% keras Aug 11 HIGH CVE-2025-54886 skops is a Python library which helps users share... 8.4 0.3% — Aug 8 HIGH CVE-2025-7725 The Photos, Files, YouTube, Twitter, Instagram,... 7.2 — — Aug 1 HIGH CVE-2025-54413 skops is a Python library which helps users share... — 0.0% — Jul 26 HIGH CVE-2025-54412 skops is a Python library which helps users share... — 0.0% — Jul 26 HIGH CVE-2025-30402 ExecuTorch vulnerable to Heap-based Buffer... 8.1 0.1% executorch Jul 11 HIGH CVE-2025-6209 LlamaIndex vulnerable to Path Traversal attack... 7.5 0.1% llama-index-core Jul 7 HIGH CVE-2025-6386 Lord of Large Language Models vulnerable to... 7.5 0.1% lollms Jul 7 HIGH CVE-2025-3046 LlamaIndex is vulnerable to Path Traversal attack... 7.5 0.1% — Jul 7 HIGH CVE-2025-3225 LlamaIndex has an XML Entity Expansion... 7.5 0.1% — Jul 7 HIGH CVE-2025-3262 A Regular Expression Denial of Service (ReDoS)... 7.5 0.1% transformers Jul 7 HIGH CVE-2025-6855 A vulnerability, which was classified as... 8.8 0.2% langchain-chatchat Jun 29 HIGH CVE-2025-5018 The Hive Support plugin for WordPress is... 7.1 — — Jun 6 HIGH CVE-2025-30167 Jupyter Core on Windows Has Uncontrolled Search... 7.3 0.0% — Jun 4 HIGH CVE-2025-48889 Gradio is an open-source Python package that... 7.5 0.9% gradio May 30 HIGH CVE-2025-46722 vLLM is an inference and serving engine for large... 7.3 0.1% vllm May 29 HIGH CVE-2025-5173 A vulnerability has been found in HumanSignal... 7.8 0.1% — May 26 HIGH CVE-2025-2099 A vulnerability in the `preprocess_string()`... 7.5 0.1% transformers May 19 HIGH CVE-2025-47783 label-studio vulnerable to Cross-Site Scripting... — 0.2% label-studio May 15 HIGH CVE-2025-1752 LlamaIndex Vulnerable to Denial of Service (DoS) 7.5 0.2% llama-index May 10 HIGH CVE-2025-0649 Incorrect JSON input stringification in Google's... 7.5 — tensorflow_serving May 6 HIGH CVE-2025-30165 vLLM is an inference and serving engine for large... 8.0 1.3% vllm May 6 HIGH CVE-2025-46567 LLama Factory enables fine-tuning of large... 7.8 0.2% llamafactory May 1 HIGH CVE-2025-46560 vLLM is a high-throughput and memory-efficient... 7.5 0.6% vllm Apr 30

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial