CVE-2025-23268

Published: Sep 17, 2025Modified: Oct 8, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

NVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker may cause an improper input validation issue. A successful exploit of this vulnerability may lead to code execution.

Affected (1)

Products: Nvidia: Triton Inference Server

Nvidia

1 product

Triton Inference Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Nvidia Triton Inference Server	Before 25.07

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (1)

https://nvidia.custhelp.com/app/answers/detail/a_id/5691

Source: psirt@nvidia.com

Vendor Advisory

Timeline

No history available yet.