Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Network-reachable, unauthenticated, low-complexity DoS with availability-only impact; C/I set to N as the flaw is pure resource exhaustion.
Primary rating from Vendor (nvidia).
CVSS VectorVendor: nvidia
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
2DescriptionCVE.org
NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause uncontrolled resource consumption. A successful exploit of this vulnerability might lead to denial of service.
Articles & Coverage 1
AnalysisAI
Denial of service in NVIDIA Triton Inference Server for Linux lets remote unauthenticated attackers exhaust server resources (CWE-400 uncontrolled resource consumption) and render the AI/ML inference endpoint unavailable, with no impact to confidentiality or integrity. The CVSS 3.1 base score is 7.5 (AV:N/AC:L/PR:N/UI:N/A:H), reflecting network-reachable, low-complexity, no-privilege exploitation. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | The CVSS vector (AV:N/AC:L/PR:N/UI:N) indicates no special conditions - remote unauthenticated exploitation against network-reachable instances of NVIDIA Triton Inference Server for Linux. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS vector is internally consistent for a DoS: AV:N (network), AC:L (low complexity), PR:N (no privileges), UI:N (no interaction), S:U, with A:H and C:N/I:N - a clean availability-only impact scoring 7.5 (High). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker who can reach an internet- or network-exposed Triton endpoint sends a crafted or high-volume sequence of inference/API requests that the server processes without an effective resource bound, driving CPU/memory/thread usage until the service stops responding. Because exploitation requires no authentication and no user interaction (PR:N/UI:N) and is low-complexity (AC:L), the attack is repeatable and cheap; no public exploit code is currently identified, but the low barrier makes independent development straightforward. |
| Remediation | No vendor-released patch version was identified in the provided data, so consult the NVIDIA product security advisory for CVE-2026-47479 (referenced via https://nvd.nist.gov/vuln/detail/CVE-2026-47479) and upgrade Triton Inference Server to the fixed release NVIDIA specifies. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours, identify and inventory all NVIDIA Triton Inference Server instances, document version numbers, implement network-level rate limiting or Web Application Firewall rules to restrict incoming request rates, and activate real-time monitoring and alerting for resource utilization anomalies (CPU, memory, network I/O). …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
More in Triton Inference Server
View allNVIDIA Triton Inference Server for Linux contains a vulnerability where a user can set the logging location to an arbitr
NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a user can corrupt system fi
NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an impro
Denial of service in NVIDIA Triton Inference Server for Linux allows remote unauthenticated attackers to exhaust server
Denial of service in NVIDIA Triton Inference Server for Linux (versions through 26.03) allows a remote attacker to crash
Denial of service in NVIDIA Triton Inference Server for Linux stems from a stack-based buffer overflow (CWE-121) reachab
Denial of service in NVIDIA Triton Inference Server for Linux allows a remote, unauthenticated attacker to disrupt avail
Denial of service in NVIDIA Triton Inference Server on Linux allows remote unauthenticated attackers to exhaust host mem
Denial of service in NVIDIA Triton Inference Server on Linux allows remote unauthenticated attackers to crash the servic
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where, when it is launched with the non-de
NVIDIA Triton Server for Linux contains a vulnerability where an attacker may cause an improper validation of specified
NVIDIA Triton Inference Server contains a vulnerability where an attacker may cause an improper check for unusual or exc
Same weakness CWE-400 – Uncontrolled Resource Consumption
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-44431
GHSA-6gfh-7rjr-vfmg