**Name of the Vulnerable Software and Affected Versions:**

NVIDIA Triton Inference Server versions prior to 25.07

**Description:**

NVIDIA Triton Inference Server contains a vulnerability in its Python backend that allows a remote, unauthenticated attacker to execute arbitrary code. The vulnerability is due to an out-of-bounds write triggered by sending a specially crafted request. Successful exploitation may lead to remote code execution, denial of service, data tampering, or information disclosure. This vulnerability chain can potentially allow an attacker to take full control of the server, a critical component in many AI/ML production environments.

**Recommendations:**

Upgrade to version 25.07 or higher.