72 matches found
NVIDIA Triton Inference Server <= 26.02 - Authentication Bypass
NVIDIA Triton Inference Server contains an authentication bypass vulnerability, letting attackers bypass authentication and potentially execute code, escalate privileges, tamper data, cause denial of service, or disclose information, exploit requires no special conditions. id: CVE-2026-24207 info...
CVE-2026-47476
NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause uncontrolled resource consumption. A successful exploit of this vulnerability might lead to denial of service...
PT-2026-58760
Name of the Vulnerable Software and Affected Versions NVIDIA Triton Inference Server for Linux affected versions not specified Description An issue exists where an attacker can cause the use of an expired file descriptor. This flaw is network exploitable and requires no authentication, which may...
CVE-2026-24264
NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handling of highly compressed data. A successful exploit of this vulnerability might lead to denial of service...
CVE-2026-24266
CVE-2026-24266 affects NVIDIA’s Triton Inference Server for Linux. The issue is a use-after-free vulnerability in the server (specific component not detailed in the provided documents) that can lead to a denial of service if exploited. NVIDIA’s security bulletin specifies affected versions are 0....
CVE-2026-53538 vulnerabilities
Vulnerabilities for packages: litellm, wazuh-manager-fips, airflow-core, wazuh-manager, airflow-postgres-fips, tritonserver-backend-vllm-cuda-12.9, airflow...
GHSA-2FQR-MR3J-6WP8 vulnerabilities
Vulnerabilities for packages: dask-kubernetes-fips, metaflow-service-fips, mlflow, awx, tritonserver-backend-vllm-cuda-13.0, open-webui, apache-beam-python-3.12-sdk, authentik-fips, py3-vllm-cuda-12.4, py3-vllm-cuda-12.9, apache-beam-python-3.11-sdk, text-generation-inference, py3-vllm-cuda-13.0,...
CVE-2026-24147
NVIDIA Triton Inference Server contains a vulnerability in triton server where an attacker may cause an information disclosure by uploading a model configuration. A successful exploit of this vulnerability may lead to information disclosure or denial of service...
CVE-2026-24213
NVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, or information disclosure...
GHSA-RQ6V-X3J8-7QGF Amazon SageMaker Python SDK is missing integrity verification in its Triton inference handler
Summary Amazon SageMaker Python SDK is an open-source library for training and deploying machine learning models on Amazon SageMaker. An issue exists where, under certain circumstances, the Triton inference handler deserializes model artifacts without performing integrity verification, allowing...
Authentication Bypass Using an Alternate Path or Channel
Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Authentication Bypass Using an Alternate Path or Channel. NVIDIA Triton Inference Server contains a vulnerability where...
CVE-2026-24213
NVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, or information disclosure...
CVE-2026-24208
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a path traversal issue. A successful exploit of this vulnerability might lead to denial of service...
CVE-2026-24174
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a server crash by sending a malformed request to the server. A successful exploit of this vulnerability might lead to denial of service...
CVE-2026-24174
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a server crash by sending a malformed request to the server. A successful exploit of this vulnerability might lead to denial of service...
CVE-2026-24147
NVIDIA Triton Inference Server contains a vulnerability in triton server where an attacker may cause an information disclosure by uploading a model configuration. A successful exploit of this vulnerability may lead to information disclosure or denial of service...
CVE-2026-24146
CVE-2026-24146 affects NVIDIA Triton Inference Server. The vulnerability arises from insufficient input validation and a large number of outputs, which can cause the server to crash and potentially lead to a denial of service. Documented impact is DoS; exploitation status is not detailed in the p...
Security Bulletin: NVIDIA Triton Inference Server - April 2026
NVIDIA has released a software update for NVIDIA® Triton Inference Server. To protect your system, clone or update this software to Triton Server r26.02 or later from the NVIDIA Triton Inference Server GitHub repo. Go to NVIDIA Product Security. Details The following table summarizes the potentia...
CVE-2026-24158
NVIDIA Triton Inference Server contains a vulnerability in the HTTP endpoint where an attacker may cause a denial of service by providing a large compressed payload. A successful exploit of this vulnerability may lead to denial of service...
Security Bulletin: NVIDIA Triton Inference Server - March 2026
NVIDIA has released a software update for NVIDIA® Triton Inference Server. To protect your system, clone or update this software to Triton Server 26.01 or later from NVIDIA GitHub. Go to NVIDIA Product Security. Details The following table summarizes the potential vulnerabilities that this securi...