CVE-2026-24271: NVIDIA TensorRT-LLM contains a vulnerability in the OpenAI-compatible inference API, where an attacker could cause alloc
Summary
NVIDIA TensorRT-LLM (a tool for running large language models efficiently on NVIDIA GPUs) has a vulnerability in its OpenAI-compatible inference API that allows attackers to request unlimited GPU resources without restrictions. This could cause a denial of service (making the system unavailable to legitimate users) by exhausting the GPU's memory and processing power.
Vulnerability Details
6.2(medium)
EPSS: 0.0%
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
local
low
none
none
July 14, 2026
Classification
Affected Vendors
Related Issues
CVE-2026-47482: NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause missing release of memory
CVE-2022-29200: TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implem
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-24271
First tracked: July 14, 2026 at 08:07 PM
Classified by LLM (prompt v3) · confidence: 95%