Login Sign Up

CVE-2025-33211

7.5 HIGH
Denial of Service

📋 TL;DR

NVIDIA Triton Server for Linux has an input validation vulnerability where attackers can trigger improper quantity validation, potentially causing denial of service. This affects organizations running NVIDIA Triton Inference Server on Linux systems. The vulnerability allows attackers to disrupt AI inference services.

💻 Affected Systems

Products:
  • NVIDIA Triton Inference Server
Versions: Specific affected versions not detailed in references; check NVIDIA advisory for exact ranges
Operating Systems: Linux
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Linux versions of NVIDIA Triton Server; Windows and other platforms not mentioned as vulnerable

📦 What is this software?

Triton Inference Server by Nvidia

View all CVEs affecting Triton Inference Server →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service disruption of Triton Inference Server, halting all AI model inference capabilities and impacting dependent applications.

🟠

Likely Case

Partial or temporary service degradation, causing inference failures or increased latency for AI workloads.

🟢

If Mitigated

Minimal impact with proper network segmentation and input validation controls in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Vulnerability involves improper input validation which typically requires low complexity to exploit for DoS

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check NVIDIA advisory for specific patched versions

Vendor Advisory: https://nvidia.custhelp.com/app/answers/detail/a_id/5734

Restart Required: Yes

Instructions:

1. Review NVIDIA advisory for affected versions. 2. Update to patched version from NVIDIA's official repositories. 3. Restart Triton Server services. 4. Verify update with version check.

🔧 Temporary Workarounds

Network Access Restriction

linux

Limit network access to Triton Server to trusted sources only

iptables -A INPUT -p tcp --dport 8000 -s trusted_ip_range -j ACCEPT
iptables -A INPUT -p tcp --dport 8000 -j DROP

Input Validation Proxy

all

Deploy a reverse proxy with strict input validation before Triton Server

🧯 If You Can't Patch

  • Implement strict network segmentation to isolate Triton Server from untrusted networks
  • Deploy rate limiting and input sanitization at the network perimeter

🔍 How to Verify

Check if Vulnerable:

Check Triton Server version against NVIDIA's advisory for affected versions

Check Version:

tritonserver --version

Verify Fix Applied:

Confirm version is updated to patched release specified in NVIDIA advisory

📡 Detection & Monitoring

Log Indicators:

  • Unusual request patterns to Triton Server
  • Service crash or restart logs
  • High error rates in inference requests

Network Indicators:

  • Abnormal traffic spikes to Triton Server ports
  • Repeated malformed requests to inference endpoints

SIEM Query:

source="triton_server" AND (event_type="crash" OR error_count > threshold)

📊 Metadata

CVE ID: CVE-2025-33211
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-1284
EPSS Score: 0.09% exploit probability (25.5th percentile)
Published: December 3, 2025
Last Updated: December 5, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-33211, you might also want to check these:

CVE-2024-8887 10.0

CVE-2024-8887 is an authentication bypass vulnerability in CIRCUTOR Q-SMT firmware that allows attac...

Same vulnerability type (CWE-1284)
CVE-2025-55398 9.8

A vulnerability in mouse07410 asn1c through version 0.9.29 allows attackers to bypass INTEGER constr...

Same vulnerability type (CWE-1284)
CVE-2021-31556 9.8

This vulnerability in MediaWiki's OAuth extension allows attackers to cause denial of service or pot...

Same vulnerability type (CWE-1284)