Write-What-Where Vulnerability in NVIDIA TensorRT-LLM
CVE-2026-47473

7.4HIGH

Key Information:

Vendor

Nvidia

Vendor
CVE Published:
14 July 2026

What is CVE-2026-47473?

The NVIDIA TensorRT-LLM software has a vulnerability that allows attackers to exploit a write-what-where condition. This could result in serious consequences, including data tampering, where attackers might modify data arbitrarily. Additionally, the potential for a denial of service attack could disrupt normal operations, and there is a risk of sensitive information being disclosed. Proper updates and security measures are vital to mitigate these risks.

Affected Version(s)

TensorRT-LLM 0.0

References

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.