CVE-2026-24233: NVIDIA TensorRT-LLM for Linux contains a vulnerability in the restricted unpickler used for model weight deserialization
Summary
NVIDIA TensorRT-LLM for Linux has a vulnerability in its unpickler (a tool that converts serialized data back into usable objects) that allows local attackers to deserialize untrusted data. A successful attack could lead to code execution, privilege escalation, data tampering, and information disclosure.
Vulnerability Details
8.4(high)
EPSS: 0.0%
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
local
low
none
none
July 14, 2026
Classification
Affected Vendors
Related Issues
CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling
CVE-2026-47482: NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause missing release of memory
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-24233
First tracked: July 15, 2026 at 02:07 AM
Classified by LLM (prompt v3) · confidence: 92%