CVE-2025-23335

CWE-1913 documents3 sources

Severity

7.5HIGH

EPSS

0.1%

top 80.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Triton Inference Server

Timeline

PublishedAug 6

Description

NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a vulnerability where an attacker could cause an underflow by a specific model configuration and a specific input. A successful exploit of this vulnerability might lead to denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 0.7 | Impact: 3.6

Affected Packages2 packages

▶NVDnvidia/triton_inference_server< 25.05

▶CVEListV5nvidia/triton_inference_serverAll versions prior to 25.05

🔴Vulnerability Details

CVEList

CVE-2025-23335: NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a vulnerability where an attacker could cause an underflow by a↗2025-08-06

▶

GHSA

GHSA-r7f8-w95q-c4g4: NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a vulnerability where an attacker could cause an underflow by a↗2025-08-06

▶