Lucene search
+L

667 matches found

RedhatCVE
RedhatCVE
added 2026/04/01 5:3 p.m.6 views

CVE-2026-34227

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

8.8CVSS5.8AI score0.00396EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/31 3:25 p.m.7 views

EUVD-2026-17490

Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon, capable of exfiltrating all collected target data e.g. SS...

5.9CVSS5.8AI score0.00396EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.7 views

PT-2026-29285

Name of the Vulnerable Software and Affected Versions Sliver versions prior to 1.7.4 Description Sliver is a command and control framework that utilizes a custom Wireguard netstack. Prior to version 1.7.4, an unauthenticated attacker can gain immediate, silent control over all active C2 sessions ...

8.8CVSS6.1AI score0.00396EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.9 views

SUSE CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References3
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-32241

Flannel is a network fabric for containers, designed for Kubernetes. The Flannel project includes an experimental Extension backend that allows users to easily prototype new backend types. In versions of Flannel prior to 0.28.2, this Extension backend is vulnerable to a command injection that...

8.8CVSS0.02709EPSS
Exploits0References2
OSV
OSV
added 2026/03/27 7:31 p.m.3 views

CVE-2026-32241 Flannel vulnerable to cross-node remote code execution via extension backend BackendData injection

Flannel is a network fabric for containers, designed for Kubernetes. The Flannel project includes an experimental Extension backend that allows users to easily prototype new backend types. In versions of Flannel prior to 0.28.2, this Extension backend is vulnerable to a command injection that...

7.5CVSS6.2AI score0.02709EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/27 12:0 a.m.12 views

Security update for v2ray-core (important)

openSUSE Security Update: Security update for v2ray-core Announcement ID: openSUSE-SU-2026:0103-1 Rating: important References: 1251404 1260329 Cross-References: CVE-2025-47911 CVE-2026-33186 CVSS scores: CVE-2025-47911 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...

8.6CVSS6.3AI score0.01557EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/27 12:0 a.m.14 views

Security update for v2ray-core (important)

openSUSE Security Update: Security update for v2ray-core Announcement ID: openSUSE-SU-2026:0100-1 Rating: important References: 1251404 1260329 Cross-References: CVE-2025-47911 CVE-2026-33186 CVSS scores: CVE-2025-47911 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...

8.6CVSS6.3AI score0.01557EPSS
Exploits1References2
OSV
OSV
added 2026/03/26 8:33 p.m.7 views

GO-2026-4723 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports in github.com/bishopfox/sliver

Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports in github.com/bishopfox/sliver...

7.1CVSS5.9AI score0.00298EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:11 p.m.6 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/03/25 12:26 a.m.7 views

SUSE CVE-2026-27899

WireGuard Portal or wg-portal is a web-based configuration portal for WireGuard server management. Prior to version 2.1.3, any authenticated non-admin user can become a full administrator by sending a single PUT request to their own user profile endpoint with "IsAdmin": true in the JSON body. Aft...

8.8CVSS5.9AI score0.00306EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/25 12:25 a.m.6 views

SUSE CVE-2026-29195

Netmaker makes networks with WireGuard. Prior to version 1.5.0, the user update handler PUT /api/users/username lacks validation to prevent an admin-role user from assigning the super-admin role during account updates. While the code correctly blocks an admin from assigning the admin role to...

6.9CVSS5.8AI score0.0023EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/25 12:25 a.m.4 views

SUSE CVE-2026-29196

Netmaker makes networks with WireGuard. Prior to version 1.5.0, a user assigned the platform-user role can retrieve WireGuard private keys of all wireguard configs in a network by calling GET /api/extclients/network or GET /api/nodes/network. While the Netmaker UI restricts visibility, the API...

8.7CVSS5.8AI score0.00252EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/25 12:25 a.m.3 views

SUSE CVE-2026-29781

Sliver is a command and control framework that uses a custom Wireguard netstack. In versions from 1.7.3 and prior, a vulnerability exists in the Sliver C2 server's Protobuf unmarshalling logic due to a systemic lack of nil-pointer validation. By extracting valid implant credentials and omitting...

6.5CVSS5.9AI score0.00504EPSS
Exploits1References3
NVD
NVD
added 2026/03/20 4:16 a.m.5 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS0.00298EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/20 3:37 a.m.2 views

CVE-2026-32941 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/20 3:37 a.m.3 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/03/20 3:37 a.m.11 views

CVE-2026-32941

Sliver C2 framework (git: github.com/bishopfox/sliver) is affected. Versions 1.7.3 and earlier expose a Remote OOM due to memory allocation based on an attacker-controlled 4‑byte length prefix in the mTLS and WireGuard C2 transports. The socketReadEnvelope and socketWGReadEnvelope code paths trus...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/03/20 3:37 a.m.36 views

CVE-2026-32941 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS0.00298EPSS
Exploits1References1
OSV
OSV
added 2026/03/20 3:37 a.m.6 views

CVE-2026-32941 Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.9AI score0.00298EPSS
Exploits1References3
Rows per page
Query Builder