CVE-2026-24210
Integer Overflow in NVIDIA Triton Inference Server
Publication date: 2026-05-20
Last updated on: 2026-05-20
Assigner: NVIDIA Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| nvidia | triton_inference_server | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-190 | The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in NVIDIA Triton Inference Server is an integer overflow issue. This means that an attacker could exploit the way the software handles integer values, causing them to exceed their maximum limit and wrap around. This flaw can be triggered remotely without any privileges or user interaction.
A successful exploit of this integer overflow vulnerability might lead to a denial of service condition, where the server becomes unavailable or crashes.
How can this vulnerability impact me? :
This vulnerability can impact you by causing a denial of service (DoS) on the NVIDIA Triton Inference Server. An attacker exploiting the integer overflow could crash or disrupt the server, making it unavailable for legitimate users.
Since the vulnerability can be exploited remotely without any privileges or user interaction, it poses a significant risk to the availability of services relying on this server.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided information does not specify how this vulnerability affects compliance with common standards and regulations such as GDPR or HIPAA.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
There is no specific information provided about detection methods or commands to identify this vulnerability on your network or system.
What immediate steps should I take to mitigate this vulnerability?
The provided information does not include specific mitigation steps or recommendations to address this vulnerability.