CVE-2024-53880

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Feb 12, 2025

CWE ID 190

Summary

CVE-2024-53880 is a vulnerability affecting NVIDIA Triton Inference Server. This issue lies in the model loading API, where a user can potentially trigger an integer overflow or wraparound error by uploading a model file of unusually large size. The error results in an internal variable overflow, which may cause a denial-of-service condition when the server becomes unresponsive. Users are advised to update to the latest version of the server to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Triton Inference Server

Affected Vendors

NVIDIA

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/0y-Wzu
https://www.cve.org/CVERecord?id=CVE-2024-53880
https://nvd.nist.gov/vuln/detail/CVE-2024-53880

Back to Vulnerability Database