CVE-2026-24213

Vulnerability

Overview

CVE-2026-24213 is a high-severity vulnerability affecting the NVIDIA Triton Inference Server, specifically within its DALI backend. The root cause is an out-of-bounds read, which occurs when the software reads memory beyond the bounds of an allocated buffer [1]. This type of flaw is commonly triggered by improper input validation or incorrect index handling.

Exploitation and

Attack Surface

An attacker can exploit this vulnerability by crafting a malicious input that triggers the out-of-bounds read in the DALI backend. The attack does not require any special privileges beyond network access to the Triton Inference Server, as the DALI backend processes inference requests. The networiske position needed is remote, as Triton is designed to serve inference requests over a network [1].

Impact

Successful exploitation could lead to code execution, enabling the attacker to run arbitrary code on the server. It could also cause data tampering, information disclosure, or denial of service (DoS). The potential for code execution makes this vulnerability particularly dangerous for environments where the server handles sensitive data or controls critical systems [1].

Mitigation

As of the publication date (May 20, 2026), NVIDIA has not yet released a patched version. Users are advised to monitor NVIDIA's security bulletins and apply any updates as soon as they become available. In the meantime, restricting network access to the Triton Inference Server and implementing robust input validation can reduce the risk [1].