Improper Input Validation in NVIDIA Triton Inference Server DALI Backend
CVE-2025-23268

8HIGH

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 17 September 2025

What is CVE-2025-23268?

NVIDIA Triton Inference Server is affected by a vulnerability in its DALI backend. This issue arises from improper input validation, allowing an attacker to manipulate inputs potentially leading to unauthorized code execution. It is crucial for users to remain vigilant and apply the necessary security patches to safeguard their systems against possible exploitation.

Affected Version(s)

Triton Inference Server DALI Backend All versions prior to 25.07

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5691

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23268?

Affected Version(s)

References

CVSS V3.1

Timeline