Authentication Bypass in NVIDIA Triton Inference Server
CVE-2026-24207

9.8CRITICAL

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 20 May 2026

What is CVE-2026-24207?

NVIDIA Triton Inference Server is vulnerable to an authentication bypass, which allows attackers to gain unauthorized access. This exploitation could result in serious consequences, including the execution of arbitrary code, privilege escalation, data tampering, denial of service, or the potential disclosure of sensitive information. Organizations using this server should prioritize the assessment and mitigation of this vulnerability to safeguard their systems.

Affected Version(s)

Triton Inference Server Linux All versions prior to r26.03

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24207

https://www.cve.org/CVERecord?id=CVE-2026-24207

https://nvidia.custhelp.com/app/answers/detail/a_id/5828

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24207 Data

JSON

Nvidia

What is CVE-2026-24207?

Affected Version(s)

References

CVSS V3.1

Timeline