CVE-2024-0088

CWE-119Buffer OverflowCWE-787Out-of-bounds Write3 documents3 sources
Severity
8.1HIGH
EPSS
6.0%
top 9.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia Triton Inference ServerNvidia Nvidia Triton Inference Server
Timeline
PublishedMay 14

Description

NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an improper memory access issue by a network API. A successful exploit of this vulnerability might lead to denial of service and data tampering.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:HExploitability: 0.7 | Impact: 4.7

Affected Packages2 packages

NVDnvidia/triton_inference_server20.1024.04
CVEListV5nvidia/nvidia_triton_inference_server20.10 to 24.03

🔴Vulnerability Details

2
GHSA
GHSA-wrjw-52pw-744r: NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an improper memory access issue by a n2024-05-14
CVEList
CVE2024-05-09
CVE-2024-0088 (HIGH CVSS 8.1) | NVIDIA Triton Inference Server for | cvebase.io