Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

146 matches found

The Hacker News
The Hacker Newsadded 2026/06/05 5:34 a.m.21 views

PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network

The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services AWS, Google Cloud, and Microsoft Azure to create a covert SMTP email relay network. "Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified f...

6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/01 4:52 p.m.7 views

Malicious code in httpx-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5d3d6ca7ec9867abcf3fb8a0170ca44801107a64fb1ff7f9aa437dd7b1f59845 During installation, package downloads downloads and executes next-stage script that then downloads a Sliver beacon and establishes persistence via a systemd...

5.8AI score
Exploits0References2
OSV
OSVadded 2026/05/01 4:52 p.m.8 views

MAL-2026-3216 Malicious code in httpx-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5d3d6ca7ec9867abcf3fb8a0170ca44801107a64fb1ff7f9aa437dd7b1f59845 During installation, package downloads downloads and executes next-stage script that then downloads a Sliver beacon and establishes persistence via a systemd...

5.8AI score
Exploits0References2
OSV
OSVadded 2026/04/02 6:42 p.m.3 views

GO-2026-4899 Sliver: Nil Pointer Dereference in tunnelCloseHandler causes panic when a reverse tunnel (rportfwd) close is attempted in github.com/bishopfox/sliver

Sliver: Nil Pointer Dereference in tunnelCloseHandler causes panic when a reverse tunnel rportfwd close is attempted in github.com/bishopfox/sliver...

5.9AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/04/02 12:0 a.m.3 views

PT-2026-29943

Sliver: Nil Pointer Dereference in tunnelCloseHandler causes panic when a reverse tunnel rportfwd close is attempted in github.com/bishopfox/sliver...

5.9AI score
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/04/01 5:3 p.m.4 views

CVE-2026-34227

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

8.8CVSS5.8AI score0.00396EPSS
Exploits1References1
OSV
OSVadded 2026/03/31 11:7 p.m.2 views

GHSA-6FPF-248C-M7WM Sliver One-Click Remote Access: Insecure CORS & Unauthenticated MCP Interface

A single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SSH keys, ntds.dit or destroying the entire compromised infrastructure, entirely through the operator's own...

5.9CVSS5.9AI score0.00396EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2026/03/31 3:25 p.m.3 views

CVE-2026-34227

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

5.9CVSS5.8AI score0.00396EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/31 3:25 p.m.6 views

CVE-2026-34227 Sliver One-Click Remote Access: Insecure CORS & Unauthenticated MCP Interface

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

5.9CVSS5.8AI score0.00396EPSS
Exploits1References1
CVE
CVEadded 2026/03/31 3:25 p.m.10 views

CVE-2026-34227

Sliver is an open-source C2 framework using a custom WireGuard netstack. Technical details in connected docs show a vulnerability in versions prior to 1.7.4 where a single click on a malicious link can grant an unauthenticated attacker immediate, silent control over active C2 sessions or beacons,...

8.8CVSS5.8AI score0.00396EPSS
Exploits1References1Affected Software1
EUVD
EUVDadded 2026/03/31 3:25 p.m.3 views

EUVD-2026-17490

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

5.9CVSS5.8AI score0.00396EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/03/31 12:0 a.m.7 views

Sliver 安全漏洞

Sliver is an open-source, cross-platform opponent simulation/red team framework developed by Bishop Fox. It can be used by organizations of various sizes for security testing. Versions of Sliver prior to 1.7.4 contained security vulnerabilities. These vulnerabilities allowed unauthenticated...

8.8CVSS5.8AI score0.00396EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2026/03/28 12:26 a.m.3 views

SUSE CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References3
OSV
OSVadded 2026/03/26 8:33 p.m.3 views

GO-2026-4723 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports in github.com/bishopfox/sliver

Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports in github.com/bishopfox/sliver...

7.1CVSS5.9AI score0.00298EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2026/03/26 3:11 p.m.4 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2026/03/25 12:25 a.m.1 views

SUSE CVE-2026-29781

Sliver is a command and control framework that uses a custom Wireguard netstack. In versions from 1.7.3 and prior, a vulnerability exists in the Sliver C2 server's Protobuf unmarshalling logic due to a systemic lack of nil-pointer validation. By extracting valid implant credentials and omitting...

6.5CVSS5.9AI score0.00504EPSS
Exploits1References3
NVD
NVDadded 2026/03/20 4:16 a.m.4 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS0.00298EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/03/20 3:37 a.m.2 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/20 3:37 a.m.1 views

CVE-2026-32941 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1
CVE
CVEadded 2026/03/20 3:37 a.m.4 views

CVE-2026-32941

Sliver C2 framework (git: github.com/bishopfox/sliver) is affected. Versions 1.7.3 and earlier expose a Remote OOM due to memory allocation based on an attacker-controlled 4‑byte length prefix in the mTLS and WireGuard C2 transports. The socketReadEnvelope and socketWGReadEnvelope code paths trus...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder