AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first

Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 50 of 973 results — no patch

Severity CVE ID Summary CVSS EPSS Package Date

HIGH CVE-2025-55559 An issue was discovered TensorFlow v2.18.0. A... 7.5 — tensorflow Sep 25 HIGH CVE-2025-55558 A buffer overflow occurs in pytorch v2.7.0 when a... 7.5 — pytorch Sep 25 HIGH CVE-2025-55557 A Name Error occurs in pytorch v2.7.0 when a... 7.5 — pytorch Sep 25 MEDI CVE-2025-55556 TensorFlow v2.18.0 was discovered to output... 6.5 — tensorflow Sep 25 MEDI CVE-2025-55554 pytorch v2.8.0 was discovered to contain an... 5.3 — pytorch Sep 25 HIGH CVE-2025-55553 A syntax error in the component proxy_tensor.py... 7.5 — pytorch Sep 25 HIGH CVE-2025-55552 pytorch v2.8.0 was discovered to display... 7.5 — pytorch Sep 25 HIGH CVE-2025-55551 An issue in the component torch.linalg.lu of... 7.5 — pytorch Sep 25 MEDI CVE-2025-46153 PyTorch before 3.7.0 has a bernoulli_p decompose... 5.3 — pytorch Sep 25 MEDI CVE-2025-46152 In PyTorch before 2.7.0, bitwise_right_shift... 5.3 — pytorch Sep 25 MEDI CVE-2025-46150 In PyTorch before 2.7.0, when torch.compile is... 5.3 — pytorch Sep 25 MEDI CVE-2025-46149 In PyTorch before 2.7.0, when inductor is used,... 5.3 — pytorch Sep 25 MEDI CVE-2025-46148 In PyTorch through 2.6.0, when eager is used,... 5.3 — pytorch Sep 25 HIGH CVE-2025-6921 The huggingface/transformers library, versions... 7.5 0.0% transformers Sep 23 UNKN CVE-2025-59532 Codex CLI is a coding agent from OpenAI that runs... — — — Sep 22 CRIT CVE-2025-59434 Flowise is a drag & drop user interface to build... 9.6 — — Sep 22 HIGH CVE-2025-9906 The Keras Model.load_model method can be... 7.3 0.1% keras Sep 19 HIGH CVE-2025-9905 The Keras Model.load_model method can be... 7.3 0.0% keras Sep 19 HIGH CVE-2025-10155 An Improper Input Validation vulnerability in the... 7.8 0.0% picklescan Sep 17 MEDI CVE-2025-58177 n8n is an open source workflow automation... 5.4 — n8n Sep 15 MEDI CVE-2025-6051 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Sep 14 CRIT CVE-2025-9556 Langchaingo supports the use of jinja2 syntax... 9.8 — — Sep 12 HIGH CVE-2025-6638 A Regular Expression Denial of Service (ReDoS)... 7.5 0.0% transformers Sep 12 HIGH CVE-2025-56265 An arbitrary file upload vulnerability in the... 8.8 — n8n Sep 8 CRIT CVE-2025-55526 n8n-workflows Main Commit ee25413 allows... 9.1 — fastapi Aug 26 HIGH CVE-2025-57760 Langflow is a tool for building and deploying... 8.8 0.0% langflow Aug 25 HIGH CVE-2025-48956 vLLM is an inference and serving engine for large... 7.5 0.4% vllm Aug 21 MEDI CVE-2025-57749 n8n is a workflow automation platform. Before... 6.5 — n8n Aug 20 MEDI CVE-2025-52478 n8n is a workflow automation platform. From... 5.4 — n8n Aug 19 HIGH CVE-2025-23298 NVIDIA Merlin Transformers4Rec for all platforms... 7.8 — — Aug 13 UNKN CVE-2025-55012 Zed is a multiplayer code editor. Prior to... — — — Aug 11 HIGH CVE-2025-8747 A safe mode bypass vulnerability in the... 7.8 0.0% keras Aug 11 HIGH CVE-2025-54886 skops is a Python library which helps users share... 8.4 0.3% — Aug 8 MEDI CVE-2025-54952 ExecuTorch integer overflow vulnerability leads... — 0.2% executorch Aug 8 CRIT CVE-2025-53767 Azure OpenAI Elevation of Privilege Vulnerability 10.0 — azure_openai Aug 7 MEDI CVE-2025-44779 An issue in Ollama v0.1.33 allows attackers to... 6.6 — ollama Aug 7 MEDI CVE-2025-5197 A Regular Expression Denial of Service (ReDoS)... 5.3 0.0% transformers Aug 6 CRIT CVE-2025-45150 Insecure permissions in LangChain-ChatGLM-Webui... 9.8 — langchain-chatglm-webui Aug 1 HIGH CVE-2025-7725 The Photos, Files, YouTube, Twitter, Instagram,... 7.2 — — Aug 1 MEDI GHSA-r54c-2xmf-2cf3 MS SWIFT Deserialization RCE Vulnerability — — — Jul 31 CRIT CVE-2025-54381 BentoML is a Python library for building online... 9.9 0.5% bentoml Jul 29 CRIT CVE-2025-46059 langchain-ai v0.3.51 was discovered to contain an... 9.8 — — Jul 29 CRIT CVE-2025-5120 A sandbox escape vulnerability was identified in... 10.0 0.3% smolagents Jul 27 HIGH CVE-2025-54413 skops is a Python library which helps users share... — 0.0% — Jul 26 HIGH CVE-2025-54412 skops is a Python library which helps users share... — 0.0% — Jul 26 MEDI CVE-2025-54558 OpenAI Codex CLI before 0.9.0 auto-approves... 4.1 — — Jul 25 MEDI CVE-2025-7780 The AI Engine plugin for WordPress is vulnerable... 6.5 — — Jul 24 MEDI CVE-2025-51471 Cross-Domain Token Exposure in... 6.9 — ollama Jul 22 MEDI CVE-2025-51481 Dagster Local File Inclusion vulnerability 6.6 0.0% — Jul 22 MEDI CVE-2025-53621 DSpace open source software is a repository... 6.9 — — Jul 15

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial