Trend Micro State of AI Security Report, 1H 2025 - TrendMicro

At Pwn2Own Berlin, several zero-day vulnerabilities were discovered targeting critical AI infrastructure components, including Chroma DB, NVIDIA Triton Inference Server, and Redis. These exploits leveraged issues such as development artifacts, multi-bug chains, use-after-free conditions, and outdated libraries, posing risks like unauthenticated data access and arbitrary code execution in exposed AI systems.