Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE
Vulnerability Description
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where, when it is launched with the non-default command line option --model-control explicit, an attacker may use the model load API to cause a relative path traversal. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
相对路径遍历
Vulnerability Title
NVIDIA Triton Inference Server 安全漏洞
Vulnerability Description
NVIDIA Triton Inference Server是美国英伟达(NVIDIA)公司的一款开源软件,有助于标准化模型部署并在生产中提供快速且可扩展的 AI。 NVIDIA Triton Inference Server 存在安全漏洞,该漏洞源于当使用非默认命令行选项 --model-control 显式启动时,攻击者可能会使用模型加载 API 来导致相对路径遍历。
CVSS Information
N/A
Vulnerability Type
N/A