Every CVE whose affected-product data names Vercel Ai, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2026-8768 — CVSS 7.3 (high): A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file…
CVE-2026-8767 — CVSS 5.0 (medium): A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier-on-automerge.y…
CVE-2026-8769 — CVSS 4.3 (medium): A vulnerability was determined in vercel ai up to 3.0.97. The impacted element is the function createJsonResponseHandler/createJsonErrorResp…
CVE-2025-48985 — CVSS 3.7 (low): A vulnerability in Vercel’s AI SDK has been fixed in versions 5.0.52, 5.1.0-beta.9, and 6.0.0-beta. This issue may have allowed users to…