CVE-2025-27093 MEDIUM

CVE-2025-27093: Sliver does not restricted traffic between Wireguard clients.

Vendor Bishopfox
Product sliver
Weakness CWE-284
Published October 28, 2025
Last update October 29, 2025

CVSS base score

6.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Sliver is a command and control framework that uses a custom Wireguard netstack. In versions 1.5.43 and earlier, and in development version 1.6.0-dev, the netstack does not limit traffic between Wireguard clients. This allows clients to communicate with each other unrestrictedly, potentially enabling leaked or recovered keypairs to be used to attack operators or allowing port forwardings to be accessible from other implants.

Key dates

02Disclosure timeline

October 28, 2025 CVE published
October 29, 2025 Record updated