Integer Overflow Vulnerability in NVIDIA Triton Inference Server
CVE-2025-23324

7.5HIGH

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-23324?

The NVIDIA Triton Inference Server on both Windows and Linux platforms is susceptible to an integer overflow vulnerability. This flaw arises when an invalid request is processed by the server, potentially resulting in a wraparound that causes a segmentation fault. If exploited, this vulnerability can lead to service disruptions, rendering the inference server unavailable to legitimate requests. Users should ensure their systems are updated and monitor for any unexpected behavior associated with invalid request handling.

Affected Version(s)

Triton Inference Server Windows All versions prior to 25.05

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23324

https://www.cve.org/CVERecord?id=CVE-2025-23324

https://nvidia.custhelp.com/app/answers/detail/a_id/5687

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23324?

Affected Version(s)

References

CVSS V3.1

Timeline