Database

AVID stores instantiations of AI risks using two base data classes: Vulnerability and Report. A vulnerability (vuln) is a high-level evidence of an AI failure mode, in line with the NIST CVEs. A report is one example of a particular vulnerability occurring, supported by qualitative or quantitative evaluation.

Information about either is schematized and stored in AVID. To learn more about the motivations and technical details of vulns and reports, refer to our documentation.

Vulnerability

Vulnerabilities are linked to the taxonomy through multiple tags, denoting the AI risk domains (Security, Ethics, Performance) this vulnerability pertains to, (sub)categories under that domain, as well as AI lifecycle stages. A vulnerability in AVID can pertain to one or more of the three levels: dataset, model, or system.

List of Vulnerabilities

2023


AVID-2023-V001	AVID-2023-V002	AVID-2023-V003	AVID-2023-V004
AVID-2023-V005	AVID-2023-V006	AVID-2023-V007	AVID-2023-V008
AVID-2023-V009	AVID-2023-V010	AVID-2023-V011	AVID-2023-V012
AVID-2023-V013	AVID-2023-V014	AVID-2023-V015	AVID-2023-V016
AVID-2023-V017	AVID-2023-V018	AVID-2023-V019	AVID-2023-V020
AVID-2023-V021	AVID-2023-V022	AVID-2023-V023	AVID-2023-V024
AVID-2023-V025	AVID-2023-V026	AVID-2023-V027

2022


AVID-2022-V001	AVID-2022-V002	AVID-2022-V003	AVID-2022-V004
AVID-2022-V005	AVID-2022-V006	AVID-2022-V007	AVID-2022-V008
AVID-2022-V009	AVID-2022-V010	AVID-2022-V011	AVID-2022-V012
AVID-2022-V013

Reports

Reports are occurrences of a vulnerability. Based on the references provided in a specific report, reports can potentially more granular and reproducible than vulnerabilities.

List of Reports

2023


AVID-2023-R0001	AVID-2023-R0002	AVID-2023-R0003

2022


AVID-2022-R0001	AVID-2022-R0002	AVID-2022-R0003	AVID-2022-R0004
AVID-2022-R0005