CVE-2025-23311: NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a stack overflow through specially
Summary
NVIDIA Triton Inference Server has a vulnerability (CVE-2025-23311) where an attacker can send specially crafted HTTP requests to cause a stack overflow (a memory error where too much data is written to a limited storage area). This could allow remote code execution (running malicious commands on the server), denial of service (making the server unavailable), information disclosure (leaking data), or data tampering (modifying stored information).
Vulnerability Details
9.8(critical)
EPSS: 0.9%
Classification
Affected Vendors
Related Issues
CVE-2022-29200: TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implem
CVE-2021-29541: TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a dereference of a null p
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-23311
First tracked: February 15, 2026 at 08:45 PM
Classified by LLM (prompt v3) · confidence: 95%