CVE-2025-23268NVD

Vulnerability Summary

NVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker may cause an improper input validation issue. A successful exploit of this vulnerability may lead to code execution.

Severity Level

HIGH(8.0)

Published Date

Sep 17, 2025

Last Modified

Sep 18, 2025

Exploitation Status

????

EPSS Score (30-Day)

Data Pending

Root Weakness (CWE)

CWE-20: Improper Input Validation ↗

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required.

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityHigh

Privileges RequiredHigh

User InteractionNone

ScopeChanged

ConfidentialityHigh

IntegrityHigh

AvailabilityHigh

External References

https://nvidia.custhelp.com/app/answers/detail/a_id/5691

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2025-23268NVD

Vulnerability Summary

External References