387 matches found
The vulnerability of the software for deploying and executing AI models with NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to the execution of operations outside of the buffer in memory. This vulnerability allows a malicious actor to execute arbitrary code.
The vulnerability of the software for deploying and executing AI models in NVIDIA Triton Inference Server previously known as TensorRT Inference Server relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitra...
PT-2025-32161 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: NVIDIA Triton Inference Server contains an issue where multiple requests can cause a double free when a stream is cancelled before processing. Successful exploitation...
PT-2025-32160 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server for Windows and Linux affected versions not specified Description: The NVIDIA Triton Inference Server contains a flaw that allows a user to trigger a divide-by-zero error by submitting a malformed request...
PT-2025-32162 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: NVIDIA Triton Inference Server is susceptible to an integer overflow or wraparound condition when processing invalid requests. This can result in a segmentation fault...
PT-2025-32163 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: The NVIDIA Triton Inference Server contains an issue where an attacker can cause an integer overflow or wraparound by submitting an invalid request. This can lead to ...
PT-2025-32150 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server versions prior to 25.07 Description: NVIDIA Triton Inference Server contains a vulnerability in the HTTP server that allows an attacker to initiate a reverse shell by sending a crafted HTTP request. Successful...
PT-2025-32164 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server for Windows and Linux affected versions not specified Description: The NVIDIA Triton Inference Server contains a flaw that allows an attacker to trigger uncontrolled recursion with a crafted input. Successful...
PT-2025-32165 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: NVIDIA Triton Inference Server contains an issue where an attacker could cause an integer overflow through a crafted input. A successful exploit may lead to a denial ...
PT-2025-32167 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server for Windows and Linux affected versions not specified Description: NVIDIA Triton Inference Server contains an issue where a user can trigger a segmentation fault by submitting an invalid request that causes...
PT-2025-32159 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: NVIDIA Triton Inference Server contains an issue in the Python backend that could allow an attacker to cause an out-of-bounds write. Successful exploitation of this...
Security Bulletin: NVIDIA Triton Inference Server - August 2025
NVIDIA has released a software update for NVIDIA Triton Inference Server to address the issue disclosed in this bulletin. To protect your system, install the latest release from the Triton Inference Server Releases page on GitHub, and view the Secure Deployment Considerations Guide. Go to NVIDIA...
PT-2025-31845 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server versions prior to 25.07 Description: NVIDIA Triton Inference Server contains a vulnerability in the Python backend that allows an attacker to cause an out-of-bounds write by sending a specially crafted request...
PT-2025-31924
Name of the Vulnerable Software and Affected Versions NVIDIA Triton Inference Server versions prior to 25.07 Description NVIDIA Triton Inference Server contains a flaw where an attacker can trigger a stack overflow through crafted HTTP requests. Successful exploitation could lead to remote code...
PT-2025-32166 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server for Windows and Linux affected versions not specified Description: NVIDIA Triton Inference Server is susceptible to an integer overflow triggered by specially crafted inputs. Successful exploitation of this issu...
PT-2025-32168 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: The NVIDIA Triton Inference Server contains an issue in the Python backend that allows an attacker to cause an out-of-bounds read by manipulating shared memory data. ...
Moderate: Red Hat Security Advisory: Red Hat AI Inference Server 3.0 (CUDA)
Red Hat AI Inference Server 3.0 CUDA is now available. Red Hat® AI Inference Server...
Moderate: Red Hat Security Advisory: Red Hat AI Inference Server 3.0 (ROCm)
Red Hat AI Inference Server 3.0 ROCm is now available. Red Hat® AI Inference Server...
CVE-2025-6920
A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/ endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows...
CVE-2025-6920 Ai-inference-server: authentication bypass via unprotected inference endpoint in api
A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/ endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows...
CVE-2025-6920 Ai-inference-server: authentication bypass via unprotected inference endpoint in api
A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/ endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows...