AI Security Threat Feed

Monai: Unsafe use of Pickle deserialization may lead to RCE

MONAI: Unsafe torch usage may lead to arbitrary code execution

MONAI does not prevent path traversal, potentially leading to arbitrary file writes

An arbitrary file upload vulnerability in the Chat Trigger component of N8N v1.95.3, v1.100.1, and v1.101.1 allows attackers to execute arbitrary code via uploading a crafted HTML file.

xgrammar vulnerable to denial of service by huge enum grammar

The langchain-ai/langchain project, specifically the EverNoteLoader component, is vulnerable to XML External Entity (XXE) attacks due to insecure XML parsing. The affected version is 0.3.63. The...

Picklescan is missing detection when calling built-in python library asyncio.unix_events._UnixSubprocessTransport._start

Picklescan is missing detection when calling built-in python cProfile.run

Picklescan is missing detection when calling built-in python cProfile.runctx

Picklescan is missing detection when calling built-in python doctest.debug_script

Picklescan is missing detection when calling built-in python idlelib.pyshell.ModifiedInterpreter.runcode

Picklescan is missing detection when calling built-in python idlelib.pyshell.ModifiedInterpreter.runcommand

Picklescan is missing detection when calling built-in python idlelib.run.Executive.runcode

Picklescan is missing detection when calling built-in python lib2to3.pgen2.pgen.ParserGenerator.make_label

Picklescan is missing detection when calling built-in python ensurepip._run_pip

Picklescan is missing detection when calling pytorch function torch.utils.bottleneck.__main__.run_autograd_prof

Picklescan has a missing detection when calling built-in python library idlelib.calltip.get_entity

Picklescan has a missing detection when calling built-in python idlelib.calltip.Calltip

Picklescan has a missing detection when calling built-in python code.InteractiveInterpreter

Picklescan has a missing detection when calling built-in python idlelib.autocomplete.AutoComplete.fetch_completions

Picklescan has a missing detection when calling built-in python idlelib.autocomplete.AutoComplete.get_entity

Picklescan has a missing detection when calling built-in python idlelib.debugobj.ObjectTreeItem

Picklescan has a missing detection when calling built-in python lib2to3.pgen2.grammar.Grammar.loads

Picklescan has a missing detection when calling built-in python profile.Profile.runctx

Picklescan has a missing detection when calling built-in python profile.Profile.run

Picklescan has a missing detection when calling built-in python trace.Trace.runctx

Picklescan has a missing detection when calling built-in python trace.Trace.run

n8n-workflows Main Commit ee25413 allows attackers to execute a directory traversal via the download_workflow function within api_server.py

LlamaIndex affected by a Denial of Service (DOS) in JSONReader

XGrammar affected by Denial of Service by infinite recursion grammars

Langflow is a tool for building and deploying AI-powered agents and workflows. A privilege escalation vulnerability exists in Langflow containers where an authenticated user with RCE access can...

Picklescan missing detection when calling pytorch function torch.utils._config_module.load_config

Picklescan missing detection when calling pytorch function torch.jit.unsupported_tensor_ops.execWrapper

Picklescan missing detection when calling pytorch function torch.utils.data.datapipes.utils.decoder.basichandlers

Picklescan missing detection when calling pytorch function torch.utils.collect_env.run

Picklescan missing detection when calling pytorch function torch.fx.experimental.symbolic_shapes.ShapeEnv.evaluate_guards_expression

Picklescan missing detection when calling pytorch function torch._dynamo.guards.GuardBuilder.get

Picklescan missing detection when calling pytorch function torch.utils.bottleneck.__main__.run_cprofile

vLLM is an inference and serving engine for large language models (LLMs). From 0.1.0 to before 0.10.1.1, a Denial of Service (DoS) vulnerability can be triggered by sending a single HTTP GET request...

vLLM has remote code execution vulnerability in the tool call parser for Qwen3-Coder

n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n. While the node attempts to restrict access to sensitive...

n8n is a workflow automation platform. From 1.77.0 to before 1.98.2, a stored Cross-Site Scripting (XSS) vulnerability was identified in n8n, specifically in the Form Trigger node's HTML form...

NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability in a python dependency, where an attacker could cause a code injection issue. A successful exploit of this vulnerability...

Picklescan has pickle parsing logic flaw that leads to malicious pickle file bypass

Zed is a multiplayer code editor. Prior to version 0.197.3, in the Zed Agent Panel allowed for an AI agent to achieve Remote Code Execution (RCE) by bypassing user permission checks. An AI Agent...

A safe mode bypass vulnerability in the `Model.load_model` method in Keras versions 3.0.0 through 3.10.0 allows an attacker to achieve arbitrary code execution by convincing a user to load a...

skops is a Python library which helps users share and ship their scikit-learn based models. In versions 0.12.0 and below, the Card.get_model does not contain any logic to prevent arbitrary code...

ExecuTorch out-of-bounds access vulnerability

ExecuTorch integer overflow vulnerability

ExecuTorch vulnerable to Heap-based Buffer Overflow