1314 matches found
CVE-2024-42477
CVE-2024-42477 affects llama.cpp (C/C++) where an unsafe type member in the rpc_tensor structure can trigger a global-buffer-overflow, potentially leaking memory data. The issue is reported as fixed in commit b3561 and is reflected in Fedora security advisory FEDORA-2024-89c69bb9d3 and related ad...
CVE-2024-42070
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate NFTDATAVALUE on store to data registers register store validation for NFTDATAVALUE is conditional, however, the datatype is always either NFTDATAVALUE or NFTDATAVERDICT. This only requires a ne...
Spring AI with Groq - a blazingly fast AI inference engine
Faster information processing not only informs - it transforms how we perceive and innovate. Spring AI, a powerful framework for integrating AI capabilities into Spring applications, now offers support for Groq - a blazingly fast AI inference engine with support for Tool/Function calling...
CVE-2024-41130
CVE-2024-41130 affects llama.cpp (C/C++) with a null pointer dereference in gguf_init_from_file. Root cause: null pointer dereference prior to version b3427. Impact: as documented, DoS-like behavior stemming from the crash/denial of service. Remediation: upgrade to version b3427 or later (per off...
CVE-2024-41130 llama.cpp null pointer dereference in gguf_init_from_file
llama.cpp provides LLM inference in C/C++. Prior to b3427, llama.cpp contains a null pointer dereference in ggufinitfromfile. This vulnerability is fixed in b3427...
GHSA-WXCX-GG9C-FWP2 TorchServe vulnerable to bypass of allowed_urls configuration
Impact TorchServe's check on allowedurls configuration can be by-passed if the URL contains characters such as ".." but it does not prevent the model from being downloaded into the model store. Once a file is downloaded, it can be referenced without providing a URL the second time, which...
Spring AI - Groq AI inference
Faster information processing not only inform—it transforms how we perceive and innovate. Spring AI, a powerful framework for integrating AI capabilities into Spring applications, now offers support for Groq - a blazingly fast AI inference engine with supports for Tool/Function calling. Because...
CVE-2024-39920
The TCP protocol in RFC 9293 has a timing side channel that makes it easier for remote attackers to infer the content of one TCP connection from a client system to any server, when that client system is concurrently obtaining TCP data at a slow rate from an attacker-controlled server, aka the...
CVE-2024-39920
The CVE-2024-39920 entry describes a timing side channel in TCP (RFC 9293), dubbed the SnailLoad issue, where an attacker can infer the content of a client’s TCP connection when the client concurrently receives data from an attacker-controlled server. The attack is illustrated by measuring RTTs o...
The vulnerability of the software for deploying and executing AI models, NVIDIA Triton Inference Server (formerly TensorRT Inference Server), allows a perpetrator to disclose protected information.
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to initialization errors. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...
Unspecified Vulnerability in NVIDIA Triton Inference Server
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from a security vulnerability that stems from the fact that users can be caused to initialize...
Unspecified Vulnerability in NVIDIA Triton Inference Server (CNVD-2025-23140)
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. A security vulnerability exists in NVIDIA Triton Inference Server that originates from injecting forged logs and executable commands by...
CVE-2024-0103
NVIDIA Triton Inference Server for Linux contains a vulnerability where a user may cause an incorrect Initialization of resource by network issue. A successful exploit of this vulnerability may lead to information disclosure...
CVE-2024-0095
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where a user can inject forged logs and executable commands by injecting arbitrary data as a new log entry. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of...
CVE-2024-0103
NVIDIA Triton Inference Server for Linux contains a vulnerability where a user may cause an incorrect Initialization of resource by network issue. A successful exploit of this vulnerability may lead to information disclosure...
CVE-2024-0103
Summary of CVE-2024-0103 (NVIDIA Triton Inference Server for Linux) : The vulnerability allows a user to cause an incorrect Initialization of a resource due to a network issue, potentially leading to information disclosure. Affected product is NVIDIA Triton Inference Server for Linux. The issue’s...
CVE-2024-0103 CVE
NVIDIA Triton Inference Server for Linux contains a vulnerability where a user may cause an incorrect Initialization of resource by network issue. A successful exploit of this vulnerability may lead to information disclosure...
CVE-2024-0095 CVE
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where a user can inject forged logs and executable commands by injecting arbitrary data as a new log entry. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of...
CVE-2024-0095 CVE
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where a user can inject forged logs and executable commands by injecting arbitrary data as a new log entry. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of...
NVIDIA Triton Inference Server 安全漏洞
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from a security vulnerability that stems from the fact that users can be caused to initialize...