CVE-2026-24234
6.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Summary
NVIDIA TensorRT-LLM for Linux contains a vulnerability in the multimodal media fetching functions, where a network-accessible attacker could cause server-side request forgery. A successful exploit of this vulnerability might lead to denial of service and information disclosure.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NVIDIA | TensorRT-LLM | 0.0 <= v1.3.0 rc16 | affected |
Weaknesses
- CWE-918: CWE-918 Server-Side Request Forgery (SSRF)
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.