Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-23254

NVIDIA TensorRT-LLM for any platform contains a vulnerability in python executor where an attacker may cause a data validation issue by local access to the TRTLLM server. A successful exploit of this vulnerability may lead to code execution, information disclosure and data tampering.

Published

2025-05-01T14:15:36.507

Last Modified

2025-05-02T13:53:20.943

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-502

Affected Vendors & Products

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5648 ([email protected])