Sliver C2 Framework Vulnerability Allows Unauthorized TCP Connections and Data Theft

26 Feb 2025

Vulnerability

The Sliver C2 framework has a Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-27090) that allows attackers to establish unauthorized TCP connections, steal data traffic, disclose IP addresses, and move laterally. It is recommended to update immediately to version v1.5.43 to avoid serious risks.

Read the original article on freebuf.com

Sliver C2 Framework Vulnerability Allows Unauthorized TCP Connections and Data Theft | Cyber Hub