Primary

Context

NVIDIA Triton Inference Server Double Free Vulnerability Leading to Denial-of-Service

Vulnerability

A double free vulnerability has been identified in NVIDIA Triton Inference Server for Windows and Linux, affecting all versions prior to 25.06. This vulnerability arises when multiple requests cause a stream to be cancelled before processing, potentially leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition, disrupting the normal functioning of the server.

Remediation

Users can upgrade to version 25.06 or later to address this vulnerability. For those deploying Triton Inference Server in production, it is recommended to follow the Secure Deployment Considerations Guide available on the Triton Inference Server GitHub repository.

Added: Aug 6, 2025, 1:17 PM

Updated: Aug 6, 2025, 1:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA Triton Inference Server Double Free Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating