AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

AI Injections: Direct and Indirect Prompt Injections and Their Implications

infonewsLLM-Specific

securityresearch

Source: Embrace The RedMarch 29, 2023

Summary

AI prompt injection is a vulnerability where attackers manipulate input given to AI systems, either directly (by controlling parts of the prompt themselves) or indirectly (by embedding malicious instructions in data the AI will later process, like web pages). These attacks can trick AI systems into ignoring their intended instructions and producing harmful, misleading, or inappropriate responses, similar to how SQL injection or cross-site scripting (XSS, a web attack that injects malicious code into websites) compromise other systems.

Classification

Attack Type

Prompt InjectionJailbreak

Attack SophisticationTrivial

Impact (CIA+S)

integrity

Affected Vendors

Microsoft

Related Issues

critical

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Similar attackNVD/CVE Database

high

AI Kill Chain in Action: Devin AI Exposes Ports to the Internet with Prompt Injection

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 85%