CVE-2026-24234

Summary

NVIDIA TensorRT-LLM for Linux contains a vulnerability in the multimodal media fetching functions, where a network-accessible attacker could cause server-side request forgery. A successful exploit of this vulnerability might lead to denial of service and information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIATensorRT-LLM0.0 <= v1.3.0 rc16affected

Weaknesses

  • CWE-918: CWE-918 Server-Side Request Forgery (SSRF)

References