Description

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data (e.g. SSH keys, ntds.dit) or destroying the entire compromised infrastructure, entirely through the operator's own browser. This issue has been patched in version 1.7.4.

INFO

Published Date :

2026-03-31T15:25:32.224Z

Last Modified :

2026-04-01T14:04:12.835Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-34227 vulnerability.

Vendors Products
Bishopfox
  • Sliver
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-34227.

URL Resource
https://github.com/BishopFox/sliver/security/advisories/GHSA-6fpf-248c-m7wm cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact