Primary

Context

NVIDIA Triton Inference Server Stack Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

A stack-based buffer overflow vulnerability has been identified in NVIDIA Triton Inference Server for Windows and Linux, affecting all versions prior to 25.07. This vulnerability allows an attacker to send specially crafted HTTP requests that could lead to remote code execution, denial of service, information disclosure, or data tampering.

Impact

Exploitation of this vulnerability could result in a stack overflow, potentially allowing for remote code execution, denial of service, unauthorized information disclosure, or unauthorized data modification.

Remediation

Users are advised to update to version 25.07 or later. The latest release can be downloaded from the Triton Inference Server Releases page on GitHub.

Added: Aug 6, 2025, 1:31 PM

Updated: Aug 6, 2025, 1:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA Triton Inference Server Stack Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating