NewsSecurity Vulnerabilities

NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability (CVE-2025-23242)

Luke Simmonds 229 Views 0 Comments 0 min read

CVE Number = CVE-2025-23242

This vulnerability allows remote attackers to access protected functionality on affected installations of NVIDIA Riva.

Authentication is not required to exploit this vulnerability.

The specific flaw exists within the configuration of the Triton Inference Server.

The issue results from the lack of authentication prior to allowing access to functionality.

An attacker can leverage this vulnerability to access the Triton Inference Server API on the target system.

NVIDIA has issued an update to correct this vulnerability.

More details can be found at:
https://nvidia.custhelp.com/app/answers/detail/a_id/5625

Luke Simmonds

Blogger at www.systemtek.co.uk

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.