Integer Overflow Vulnerability in NVIDIA Triton Inference Server Across Platforms
CVE-2025-23327

9.1CRITICAL

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-23327?

The NVIDIA Triton Inference Server for both Windows and Linux is susceptible to an integer overflow vulnerability. This flaw arises when the server processes specially crafted input, enabling potential attackers to exploit this weakness. Such an exploit could result in denial of service, impairing system availability, or could facilitate unauthorized data manipulation, compromising the integrity of the data handled by the server.

Affected Version(s)

Triton Inference Server Windows All versions prior to 25.05

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23327

https://www.cve.org/CVERecord?id=CVE-2025-23327

https://nvidia.custhelp.com/app/answers/detail/a_id/5687

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23327?

Affected Version(s)

References

CVSS V3.1

Timeline