CVE-2026-24147

Description

NVIDIA Triton Inference Server contains a vulnerability in triton server where an attacker may cause an information disclosure by uploading a model configuration. A successful exploit of this vulnerability may lead to information disclosure or denial of service.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

Low

Affected products

NVIDIA / Triton Inference ServerAll versions prior to r26.02 – All versions prior to r26.02

References

CONFIRMhttps://nvd.nist.gov/vuln/detail/CVE-2026-24147
CONFIRMhttps://www.cve.org/CVERecord?id=CVE-2026-24147
MISChttps://nvidia.custhelp.com/app/answers/detail/a_id/5816