Stack Overflow Vulnerability in NVIDIA Triton Inference Server
CVE-2025-23311

9.8CRITICAL

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-23311?

The NVIDIA Triton Inference Server is susceptible to a stack overflow vulnerability stemming from the handling of specially crafted HTTP requests. An attacker may exploit this vulnerability to execute arbitrary code remotely, potentially leading to denial of service, unauthorized information disclosure, or manipulation of data. This vulnerability highlights the critical importance of securing server communications to prevent unauthorized access and data integrity violations.

Affected Version(s)

Triton Inference Server Windows All versions prior to 25.07

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23311

https://www.cve.org/CVERecord?id=CVE-2025-23311

https://nvidia.custhelp.com/app/answers/detail/a_id/5687

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23311?

Affected Version(s)

References

CVSS V3.1

Timeline