Description
Sliver is a command and control framework that uses a custom Wireguard netstack. In versions 1.5.43 and earlier, and in development version 1.6.0-dev, the netstack does not limit traffic between Wireguard clients. This allows clients to communicate with each other unrestrictedly, potentially enabling leaked or recovered keypairs to be used to attack operators or allowing port forwardings to be accessible from other implants.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://github.com/BishopFox/sliver/security/advisories/GHSA-q8j9-34qf-7vq7
Patch x_refsource_misc
https://github.com/BishopFox/sliver/commit/8e5c5f14506d6d60ebb3362e6b9857ab1e0d76ff
Scores
CVSS v3
6.3
EPSS
0.0004
EPSS Percentile
10.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-284
Status
published
Products (3)
BishopFox/sliver
0 - 1.5.44Go
bishopfox/sliver
0 - 1.5.44Go
BishopFox/sliver
<= 1.5.43
Published
Oct 28, 2025
Tracked Since
Feb 18, 2026