rkervella

4 exploits Active since Feb 2025
CVE-2025-27090 WRITEUP MEDIUM WRITEUP
Sliver 1.5.26-1.5.42 - Server-Side Request Forgery via Reverse Port Forwarding
Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all sizes to perform security testing. The reverse port forwarding in sliver teamserver allows the implant to open a reverse tunnel on the sliver teamserver without verifying if the operator instructed the implant to do so. The only impact that has been shown is the exposure of the server's IP address to a third party. This issue has been addressed in version 1.5.43 and all users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS 5.3
CVE-2025-27093 WRITEUP MEDIUM WRITEUP
Sliver <1.5.43-1.6.0-dev - Command Injection
Sliver is a command and control framework that uses a custom Wireguard netstack. In versions 1.5.43 and earlier, and in development version 1.6.0-dev, the netstack does not limit traffic between Wireguard clients. This allows clients to communicate with each other unrestrictedly, potentially enabling leaked or recovered keypairs to be used to attack operators or allowing port forwardings to be accessible from other implants.
CVSS 6.3
CVE-2025-27090 WRITEUP MEDIUM WRITEUP
Sliver 1.5.26-1.5.42 - Server-Side Request Forgery via Reverse Port Forwarding
Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all sizes to perform security testing. The reverse port forwarding in sliver teamserver allows the implant to open a reverse tunnel on the sliver teamserver without verifying if the operator instructed the implant to do so. The only impact that has been shown is the exposure of the server's IP address to a third party. This issue has been addressed in version 1.5.43 and all users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS 5.3
CVE-2025-27093 WRITEUP MEDIUM WRITEUP
Sliver <1.5.43-1.6.0-dev - Command Injection
Sliver is a command and control framework that uses a custom Wireguard netstack. In versions 1.5.43 and earlier, and in development version 1.6.0-dev, the netstack does not limit traffic between Wireguard clients. This allows clients to communicate with each other unrestrictedly, potentially enabling leaked or recovered keypairs to be used to attack operators or allowing port forwardings to be accessible from other implants.
CVSS 6.3