CVE-2026-24142

CRITICAL WAF: Medium
CVSS 9.8 Published: 2026-05-20
CWE-502

NVIDIA TRT-LLM for any platform contains a deserialization vulnerability and unsafe serialized handle. A successful exploit of this vulnerability might lead to code execution, data tampering, and information disclosure.

WAF Coverage Analysis

Insecure Deserialization Medium WAF Coverage

OWASP: A08:2021 Software and Data Integrity Failures

944xxx - Java Attack

Affected Software

VendorProductVersion
nvidiatensorrt_llmup to 1.2

References

Back to CVE Database