CVE-2026-25791

High CVSS: 7.5

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to 1.7.0, the DNS C2 listener accepts unauthenticated TOTP bootstrap messages and allocates server-side DNS sessions without validating OTP values, even when EnforceOTP is enabled. Because sessions are stored without a cleanup/expiry path in this flow, an unauthenticated remote actor can repeatedly create sessions and drive memory exhaustion. This vulnerability is fixed in 1.7.0.

Vendor

Bishopfox

Product

Sliver

CWE

CWE-306

Yayın Tarihi

2026-02-09 21:15:49

Güncelleme

2026-02-23 17:42:31

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-306 Sliver HIGH Bishopfox 2026

Referanslar

https://github.com/BishopFox/sliver/releases/tag/v1.7.0 https://github.com/BishopFox/sliver/security/advisories/GHSA-wxrw-gvg8-fqjp

Benzer Kayıtlar

Medium

CVE-2026-34227

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click…

High

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remo…

Medium

CVE-2026-29781

Sliver is a command and control framework that uses a custom Wireguard netstack. In versions from 1.7.3 and prior, a vul…

Medium

CVE-2026-25760

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to 1.6.11, a path traversal in th…

Medium

CVE-2025-27090

Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all s…