Severity
High
Analysis Summary
CVE-2025-23326 CVSS:7.5
NVIDIA Triton Inference Server is vulnerable to a denial of service, caused by an integer overflow.
CVE-2025-23322 CVSS:7.5
NVIDIA Triton Inference Server is vulnerable to a denial of service, caused by a double free flaw when a stream is cancelled before it is processed.
CVE-2025-23311 CVSS:9.8
NVIDIA Triton Inference Server could allow a remote attacker to execute arbitrary code, cause a denial of service, obtain information disclosure, and data tampering, caused by a stack-based buffer overflow.
CVE-2025-23318 CVSS:8.1
NVIDIA Triton Inference Server could allow a remote attacker to execute arbitrary code, cause a denial of service, obtain information disclosure, and data tampering, caused by an out-of-bounds write flaw.
CVE-2025-23320 CVSS:7.5
NVIDIA Triton Inference Server could allow a remote attacker to obtain sensitive information, caused by a flaw in the Python backend.
CVE-2025-23325 CVSS:7.5
NVIDIA Triton Inference Server is vulnerable to a denial of service, caused by an uncontrolled recursion flaw.
CVE-2025-23324 CVSS:7.5
NVIDIA Triton Inference Server is vulnerable to a denial of service, caused by an integer overflow leading to a segmentation fault.
CVE-2025-23317 CVSS:9.1
NVIDIA Triton Inference Server could allow a remote attacker to execute arbitrary code, cause a denial of service, obtain information disclosure, and data tampering, caused by a heap-based buffer overflow.
Impact
- Denial of Service
- Buffer Overflow
- Code Execution
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2025-23326
- CVE-2025-23322
- CVE-2025-23311
- CVE-2025-23318
- CVE-2025-23320
- CVE-2025-23325
- CVE-2025-23324
- CVE-2025-23317
Affected Vendors
- NVIDIA
Affected Products
- NVIDIA Triton Inference Server 25.04
- NVIDIA Triton Inference Server 25.05
- NVIDIA Triton Inference Server 25.06
Remediation
Refer to NVIDIA Security Advisory for patch, upgrade, or suggested workaround information.