AI description
CVE-2026-24207 is an authentication bypass vulnerability found in the NVIDIA Triton Inference Server. This flaw allows an attacker to circumvent security mechanisms, potentially leading to unauthorized access to affected systems. Successful exploitation of this vulnerability could result in various outcomes, including code execution, escalation of privileges, data tampering, denial of service, or information disclosure. The vulnerability can be exploited remotely over a network without requiring authentication or user interaction.
- Description
- NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause an authentication bypass. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.
- Source
- psirt@nvidia.com
- NVD status
- Analyzed
- Products
- triton_inference_server
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- psirt@nvidia.com
- CWE-288
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
13
🚨 CVE-2026-24207 PoC for NVIDIA Triton Inference Server https://t.co/Dpd4ULWfLZ CVE-2026-24207, a critical auth bypass affecting NVIDIA Triton Inference Server. The flaw impacts versions prior to r26.03 and may allow unauthenticated access to the model-management surface. h
@DarkWebInformer
27 Jun 2026
8878 Impressions
8 Retweets
50 Likes
10 Bookmarks
1 Reply
0 Quotes
NVIDIAがAI推論基盤「Triton Inference Server」の重大脆弱性群を修正した。認証回避を引き起こすCVSS 9.8のCVE-2026-24207を含み、コード実行や権限昇格、情報漏えいへつながる恐れがあった。 最も深刻なCVE-2026-24207はTrit
@yousukezan
20 May 2026
2036 Impressions
3 Retweets
8 Likes
4 Bookmarks
0 Replies
0 Quotes
NVIDIA patches a critical 9.8 CVSS authentication bypass (CVE-2026-24207) in Triton Inference Server. Update to r26.03 to secure AI workloads! #NVIDIA #TritonServer #CyberSecurity #InfoSec #VulnerabilityAlert #CVE #AISecurity #MachineLearning #PatchNow https://t.co/EMFukjoXf7
@the_yellow_fall
20 May 2026
356 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:nvidia:triton_inference_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D5CC0AB5-9C28-4746-A0A0-D44CC1D43DF6",
"versionEndExcluding": "26.03",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
]