Auth bypass in Bishopfox Sliver
CVE-2026-34227
Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click on a malicious link gives an unauthenticated attacker immediate, silent control over every active C2 session or beacon…
Vulnerability class: Broken Authentication
EPSS: 0.000 (8.8th percentile) — read the EPSS interpretation.
Affected products
- Bishopfox Sliver — versions < 1.7.4
Weakness classification (CWE)
Public proof-of-concept exploits
References
- https://github.com/BishopFox/sliver/security/advisories/GHSA-6fpf-248c-m7wm (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2026-34227?
- CVE-2026-34227 is a vulnerability in Bishopfox Sliver, classified under Missing Authentication for Critical Function. Published 2026-03-31.
- Is CVE-2026-34227 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.