Out-of-Bounds Read Vulnerability in NVIDIA Triton Inference Server
CVE-2026-24213

8HIGH

Key Information:

Vendor: Nvidia
Status: Triton Inference Server
Vendor: CVE Published:; 20 May 2026

What is CVE-2026-24213?

The NVIDIA Triton Inference Server features a critical flaw in its DALI backend that allows unauthorized users to trigger an out-of-bounds read condition. This weakness could result in significant risks such as unauthorized code execution, manipulation of data, service interruptions, and potential exposure of sensitive information. It is essential for users of Triton Inference Server to apply the latest updates to mitigate these risks and protect their systems from potential exploitation.

Affected Version(s)

Triton Inference Server DALI Backend 0

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24213

https://www.cve.org/CVERecord?id=CVE-2026-24213

https://nvidia.custhelp.com/app/answers/detail/a_id/5828

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24213 Data

JSON

Nvidia

What is CVE-2026-24213?

Affected Version(s)

References

CVSS V3.1

Timeline