Buffer Access with Incorrect Length Value

CVE-2025-23318

High

8.1/10

Summary

NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to code execution, denial of service, data tampering, and information disclosure.

Attack Complexity: HIGH
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-805 - Buffer Access with Incorrect Length Value

The software uses a sequential operation to read or write a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer.

References

Advisory Timeline

Published Aug 06, 2025

Buffer Access with Incorrect Length Value

CVE-2025-23318

Summary

CWE-805 - Buffer Access with Incorrect Length Value

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS