CVE-2025-23317

CVSS v2.0

Critical

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions NVIDIA Triton Inference Server versions prior to 25.07

Description NVIDIA Triton Inference Server contains a vulnerability in the HTTP server that allows an attacker to initiate a reverse shell by sending a crafted HTTP request. Successful exploitation may result in remote code execution, denial of service, data tampering, or information disclosure.

Recommendations Update NVIDIA Triton Inference Server to version 25.07 or later.

Fix

RCE

DoS

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

BDU:2025-09649

CVE-2025-23317

Affected Products

Nvidia Triton Inference Server

CVE-2025-23317

Weakness Enumeration

Related Identifiers

Affected Products

References · 8