CVE-2026-24207

CVSS 9.8 · Critical EPSS 0.10% · P26 Updated May 20, 2026

Possible ATT&CK Techniques 2AI

T1136 · Create Account T1190 · Exploit Public-Facing Application

Affected Version Matrix 1

Vendor	Product	Version Range	Status
NVIDIA	Triton Inference Server	`All versions prior to r26.03`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause an authentication bypass. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用候选路径或通道进行的认证绕过

Source: NVD (National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
NVIDIA	Triton Inference Server	All versions prior to r26.03	-

II. Public POCs for CVE-2026-24207

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-24207

请登录查看更多情报信息。

Same Patch Batch · NVIDIA · 2026-05-20 · 16 CVEs total

CVE-2026-24217	8.8 HIGH	NVIDIA BioNeMo Core Linux路径遍历致代码执行
CVE-2026-24188	8.2 HIGH	NVIDIA TensorRT越界写入漏洞
CVE-2026-24218	8.1 HIGH	NVIDIA DGX OS出厂克隆SSH密钥复用漏洞
CVE-2026-24214	8.0 HIGH	NVIDIA Triton Inference Server DALI后端整数溢出漏洞
CVE-2026-24213	8.0 HIGH	NVIDIA Triton Inference Server OOB读漏洞
CVE-2026-24216	7.8 HIGH	NVIDIA BioNemo Linux反序列化漏洞致代码执行
CVE-2026-24163	7.5 HIGH	NVIDIA TRT-LLM反序列化漏洞
CVE-2025-33255	7.5 HIGH	NVIDIA TRT-LLM反序列化漏洞可导致代码执行
CVE-2026-24210	7.5 HIGH	NVIDIA Triton Inference Server 整数溢出致拒绝服务
CVE-2026-24209	7.5 HIGH	NVIDIA Triton Inference Server路径穿越漏洞
CVE-2026-24206	7.3 HIGH	NVIDIA Triton Inference Server认证绕过漏洞
CVE-2026-24142	6.3 MEDIUM	NVIDIA TRT-LLM反序列化漏洞导致代码执行
CVE-2026-24215	5.7 MEDIUM	NVIDIA Triton Inference Server DALI后端拒绝服务漏洞
CVE-2026-24160	5.5 MEDIUM	NVIDIA TRT-LLM空指针解引用导致拒绝服务
CVE-2026-24208	5.3 MEDIUM	NVIDIA Triton Inference Server路径穿越致拒绝服务漏洞

IV. Related Vulnerabilities

Same product: Triton Inference Server

Same vendor: NVIDIA

Same weakness: CWE-288

V. Comments for CVE-2026-24207

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-24207

Possible ATT&CK Techniques 2AI

Affected Version Matrix 1

I. Basic Information for CVE-2026-24207

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-24207

III. Intelligence Information for CVE-2026-24207

Same Patch Batch · NVIDIA · 2026-05-20 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-24207

Leave a comment