CVE-2026-24220
6.4
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
NVIDIA TensorRT-LLM for any platform contains a vulnerability in visual gen server, where an attacker could cause an unsafe deserialization by unauthorized zeroMQ deserialization. A successful exploit of this vulnerability might lead to code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NVIDIA | TensorRT-LLM | 0.0 <= v1.3.0 rc11 | affected |
Weaknesses
- CWE-502: CWE-502 Deserialization of Untrusted Data
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.