Traffic Control Vulnerability in Sliver Command Control Framework by BishopFox
CVE-2025-27093

6.3MEDIUM

Key Information:

Vendor

Bishopfox
Status
Sliver
Vendor
CVE Published:
28 October 2025

What is CVE-2025-27093?

The Sliver command and control framework, developed by BishopFox, has a traffic control vulnerability in its Wireguard netstack. In versions 1.5.43 and earlier, as well as in the development version 1.6.0-dev, there is an absence of traffic restrictions between Wireguard clients. This lack of traffic control can potentially lead to unauthorized communication between clients, which may result in leaked or compromised keypairs being exploited. Furthermore, it allows for port forwardings to be accessible by other implants, enhancing the risk for operators and increasing the attack surface.

Affected Version(s)

sliver <= 1.5.43

References

https://github.com/BishopFox/sliver/security/advisories/G...
x_refsource_CONFIRM
https://github.com/BishopFox/sliver/commit/8e5c5f14506d6d...
x_refsource_MISC
https://github.com/BishopFox/sliver/commit/9122878cbbcae5...
x_refsource_MISC

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.