CVE-2026-24158

EPSS 0.07%
Veröffentlicht 24.03.2026 20:26:28
Zuletzt bearbeitet 31.03.2026 01:29:00
Quelle psirt@nvidia.com
CVE-Watchlists
Login
Unerledigt
Login

NVIDIA Triton Inference Server contains a vulnerability in the HTTP endpoint where an attacker may cause a denial of service by providing a large compressed payload. A successful exploit of this vulnerability may lead to denial of service.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nvidia ≫ Triton Inference Server Version < 26.01

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.207

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@nvidia.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-789 Memory Allocation with Excessive Size Value

The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

https://nvidia.custhelp.com/app/answers/detail/a_id/5790

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-24158

Third Party Advisory

US Government Resource

https://www.cve.org/CVERecord?id=CVE-2026-24158

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-24158

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-24158

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-24158

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-24158