NVIDIA Triton Inference Server: Path Traversal Exposes DoS Risk
The National Vulnerability Database has disclosed CVE-2026-24209, a high-severity path traversal vulnerability in NVIDIA Triton Inference Server. This flaw, rated 7.5 CVSS (HIGH), could allow an unauthenticated attacker to trigger a denial of service (DoS) condition without user interaction.
Path traversal (CWE-22) is a fundamental vulnerability, and its presence in a critical component like an inference server is concerning. Attackers leveraging this could disrupt AI/ML workloads, halting critical operations or impacting services relying on real-time inference. The ‘Network’ attack vector (AV:N) and ‘Low’ attack complexity (AC:L) mean this is easily exploitable from anywhere on the internet.
Defenders need to identify all instances of NVIDIA Triton Inference Server within their environments. Given the potential for operational disruption, patching this vulnerability must be prioritized immediately upon release. This isn’t just about system uptime; it’s about the integrity and availability of your AI pipelines.
What This Means For You
- If your organization utilizes NVIDIA Triton Inference Server, you must identify all deployments and prepare for immediate patching once a fix for CVE-2026-24209 is available. Prioritize this vulnerability due to its high CVSS score and the potential for complete service disruption of critical AI/ML workloads.
Related ATT&CK Techniques
🛡️ Detection Rules
2 rules · 6 SIEM formats2 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.
CVE-2026-24209 - NVIDIA Triton Inference Server Path Traversal DoS
title: CVE-2026-24209 - NVIDIA Triton Inference Server Path Traversal DoS
id: scw-2026-05-20-ai-1
status: experimental
level: high
description: |
This rule detects attempts to exploit CVE-2026-24209 in NVIDIA Triton Inference Server. The vulnerability allows path traversal by sending crafted requests to the '/v2/models/' endpoint with '../' sequences in the URI query. Successful exploitation can lead to a denial of service.
author: SCW Feed Engine (AI-generated)
date: 2026-05-20
references:
- https://shimiscyberworld.com/posts/nvd-CVE-2026-24209/
tags:
- attack.initial_access
- attack.t1190
logsource:
category: webserver
detection:
selection:
cs-uri|contains:
- '/v2/models/'
cs-uri-query|contains:
- '../'
cs-method|exact:
- 'POST'
condition: selection
falsepositives:
- Legitimate administrative activity
Source: Shimi's Cyber World · License & reuse
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-24209 | Path Traversal | NVIDIA Triton Inference Server |
| CVE-2026-24209 | DoS | Path Traversal vulnerability in NVIDIA Triton Inference Server leading to denial of service |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | May 20, 2026 at 07:16 UTC |
This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.
Believe this infringes your rights? Submit a takedown request.
Related coverage
CVE-2026-20240 — Denial of Service
CVE-2026-20240 — In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform versions below 10.4.2603.1, 10.3.2512.9, 10.2.2510.11, 10.1.2507.21, 10.0.2503.13, and 9.3.2411.129,...
Splunk Enterprise, Cloud Vulnerability Exposes Session Cookies, Sensitive Data
CVE-2026-20239 — In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a...
CVE-2026-20238 — In Splunk AI Toolkit versions below 5.7.3, a low-privileged
CVE-2026-20238 — In Splunk AI Toolkit versions below 5.7.3, a low-privileged user that does not hold the 'admin' or 'power' roles could access confidential data...