NVIDIA Product Security Update Advisory

Sep 19 2025

Overview

We have released security updates to fix vulnerabilities in NVIDIA products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-23316, CVE-2025-23328, CVE-2025-23329

Triton Inference Server version: 25.less than 08

CVE-2025-23268

Triton Inference Server version: 25.less than 07

Resolved Vulnerabilities

Remote code execution vulnerability in the Python backend of NVIDIA Triton Inference Server (CVE-2025-23316)
Input Value Not Validated Vulnerability in the DALI backend of NVIDIA Triton Inference Server (CVE-2025-23268)
Out-of-Bounds Write Vulnerability in NVIDIA Triton Inference Server (CVE-2025-23328)
Memory corruption vulnerability in the Python backend of NVIDIA Triton Inference Server (CVE-2025-23329)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-23316, CVE-2025-23328, CVE-2025-23329

Triton Inference Server version: 25.08

CVE-2025-23268

Triton Inference Server version: 25.07

References

[1] Security Bulletin: NVIDIA Triton Inference Server – September 2025
https://nvidia.custhelp.com/app/answers/detail/a_id/5691

NVIDIA Product Security Update Advisory

Spring Product Security Update Advisory

IBM Product Security Update Advisory (CVE-2025-36244)

Tags:

Spring Product Security Update Advisory

IBM Product Security Update Advisory (CVE-2025-36244)