AI Threat Alert

AI Security Threat Feed

Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.

1,140

AI/ML CVEs Tracked

171

Critical

228

New This Week

2

In CISA KEV

Weekly CISO Take + top threats

Get the week's most critical AI security threats delivered every Monday. Free, no spam.

Sort: Date CVSS EPSS KEV first
Filter: All Critical High Medium KEV only Has patch No patch

Latest AI Security Threats

Showing 17 of 167 results — has patch
Severity CVE ID Summary CVSS EPSS Package Date
MEDI CVE-2025-1944 picklescan before 0.0.23 is vulnerable to a ZIP... 6.5 0.1% picklescan Mar 10 MEDI CVE-2025-1979 ray vulnerable to Insertion of Sensitive... 6.4 0.0% ray Mar 6 MEDI CVE-2025-1716 Picklescan Allows Remote Code Execution via... 4.2% picklescan Mar 3 MEDI CVE-2025-1889 PyTorch Model Files Can Bypass Pickle Scanners... 0.0% picklescan Mar 3 HIGH CVE-2025-25297 Label Studio allows Server-Side Request Forgery... 8.6 0.2% label-studio Feb 14 MEDI CVE-2025-25296 Label Studio allows Cross-Site Scripting (XSS)... 6.1 4.4% label-studio Feb 14 CRIT CVE-2024-52803 LLama Factory enables fine-tuning of large... 9.8 2.4% llamafactory Nov 21 MEDI GHSA-26jh-r8g2-6fpr Gradio's dropdown component pre-process step does... 5.3 gradio Oct 10 HIGH CVE-2024-5187 onnx allows Arbitrary File Overwrite in... 8.8 1.4% onnx Jun 6 MEDI CVE-2024-2965 Denial of service in langchain-community 4.2 0.0% langchain Jun 6 CRIT CVE-2023-6020 Ray Missing Authorization vulnerability 9.3 80.4% ray Nov 16 CRIT CVE-2023-6021 Ray Path Traversal vulnerability 9.3 87.3% ray Nov 16 CRIT CVE-2023-6019 Ray OS Command Injection vulnerability 9.8 88.7% ray Nov 16 CRIT CVE-2023-32785 Langchain SQL Injection vulnerability 9.8 langchain Oct 21 MEDI CVE-2022-36551 Heartex - Label Studio Community Edition... 6.5 4.7% label-studio Oct 4 MEDI CVE-2018-21030 Cross-site scripting in Jupyter Notebook 5.3 0.4% notebook Nov 8 HIGH CVE-2018-8768 Jupyter Notebook file bypasses sanitization,... 7.8 0.1% notebook Jul 12

Need deeper analysis?

Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.

Start 14-Day Free Trial