Command and Control Framework Vulnerability in Sliver by Bishop Fox
CVE-2026-29781

2.1LOW

Key Information:

Vendor

Bishopfox
Status
Sliver
Vendor
CVE Published:
7 March 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2026-29781?

A critical flaw in the Sliver command and control framework's Protobuf unmarshalling logic allows authenticated users to trigger an unhandled runtime panic due to insufficient nil-pointer validation. This exploit requires the extraction of valid implant credentials and the omission of nested fields in a signed message. The lack of panic recovery middleware in the mTLS, WireGuard, and DNS transport layers results in a complete termination of the server's process, effectively acting as a kill-switch for all concurrent sessions across the infrastructure. This critical defect necessitates a manual server restart to restore operations and currently has no available patches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

sliver <= 1.7.3

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-29781
Created by skoveit

References

https://github.com/BishopFox/sliver/security/advisories/G...
x_refsource_CONFIRM

CVSS V4

Score:
2.1
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

JSON
.