80 matches found
CVE-2025-23316
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause a remote code execution by manipulating the model name parameter in the model control APIs. A successful exploit of this vulnerability might lead to remote code...
CVE-2025-23329
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where an attacker could cause memory corruption by identifying and accessing the shared memory region used by the Python backend. A successful exploit of this vulnerability might lead to denial of service...
CVE-2025-23329
Summary of CVE-2025-23329 : NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend that could allow memory corruption by identifying and accessing the shared memory region used by that backend. A successful exploit may lead to denial of service. The is...
CVE-2025-23329
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where an attacker could cause memory corruption by identifying and accessing the shared memory region used by the Python backend. A successful exploit of this vulnerability might lead to denial of service...
CVE-2025-23316
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause a remote code execution by manipulating the model name parameter in the model control APIs. A successful exploit of this vulnerability might lead to remote code...
CVE-2025-23316
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause a remote code execution by manipulating the model name parameter in the model control APIs. A successful exploit of this vulnerability might lead to remote code...
NVIDIA Triton Inference Server 操作系统命令注入漏洞
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from an operating system command injection vulnerability that stems from the Python backend not...
PT-2025-38282
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: NVIDIA Triton Inference Server for Windows and Linux contains an issue where an attacker could cause memory corruption by identifying and accessing the shared memory...
PT-2025-38129
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server versions prior to 25.08 Description: NVIDIA Triton Inference Server contains a vulnerability in the Python backend that allows for remote code execution. An attacker can exploit this by manipulating the model na...
EulerOS 2.0 SP10 : protobuf (EulerOS-SA-2025-2081)
According to the versions of the protobuf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Any project that uses Protobuf Pure-Python backendto parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups,...
NVIDIA Triton Inference Server Information Disclosure Vulnerability
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from an information disclosure vulnerability that is caused by an out-of-bounds read flaw in the...
NVIDIA Triton Inference Server Python Backend Out-of-Bounds Write Vulnerability
Triton Inference Server is a high-performance inference service engine developed by NVIDIA, designed for AI model deployment in production environments, with support for a variety of frameworks TensorFlow, PyTorch, ONNX, etc. and optimized inference performance for GPUs and CPUs. An out-of-bounds...
CVE-2025-23333
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds read by manipulating shared memory data. A successful exploit of this vulnerability might lead to information disclosure...
CVE-2025-23319
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds write by sending a request. A successful exploit of this vulnerability might lead to remote code execution, denial of service, data tampering, or...
CVE-2025-23334
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds read by sending a request. A successful exploit of this vulnerability might lead to information disclosure...
Heap-based Buffer Overflow
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Heap-based Buffer Overflow through the HTTP/Sagemaker request handler components when parsing chunked HTTP bodies. An...
Division by zero
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Division by zero via the TopkClassifications function in the classification processing path. An attacker can cause a...
Information Exposure
Overview Affected versions of this package are vulnerable to Information Exposure via the SharedMemoryManager::GrowIfNeeded function in the bundled Python backend. An attacker could cause the shared memory limit to be exceeded by sending a large request, leading to information disclosure. The...
Integer Overflow or Wraparound
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the offset/bytesize validation in SharedMemoryManager::GetMemoryInfo. An attacker ca...
Buffer Access with Incorrect Length Value
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Buffer Access with Incorrect Length Value via the MessageQueueShm class in the bundled Python backend. An attacker coul...