1  info:
 2    name: triton-inference-server
 3    cve: CVE-2024-0088
 4    summary: Vulnerability in NVIDIA Triton Inference Server's shared memory APIs can lead to denial of service and data tampering.
 5    details: |
 6      NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, 
 7      where a user can cause an improper memory access issue by a network API. 
 8      A successful exploit of this vulnerability might lead to denial of service and data tampering.
 9    cvss: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H
10    severity: MEDIUM
11    security_advise: |
12      1. Review and update the server configuration to restrict network API access to shared memory.
13      2. Monitor for unusual activity that may indicate an attempt to exploit this vulnerability.
14      3. Stay updated with the latest security patches released by NVIDIA for Triton Inference Server.
15  rule: version > "0" && version < "unknown" # Version information not provided in the input data
16  references:
17    - https://nvd.nist.gov/vuln/detail/CVE-2024-0088
18    - https://nvidia.custhelp.com/app/answers/detail/a_id/5535