Home / Vulnerability Intelligence / CVE-2026-29781

CVE-2026-29781 - Vulnerability Analysis

N/a

Last Updated: March 9, 2026

Sliver - Denial of Service

Published: March 7, 2026Updated: March 9, 2026PoC Available

Overview

Sliver 1.7.3 and prior contains a denial of service caused by lack of nil-pointer validation in Protobuf unmarshalling logic in the C2 server, letting authenticated actors trigger a global process termination, exploit requires post-authentication access.

Severity & Score

Severity: N/a

Impact

Authenticated attackers can cause a global process termination, disrupting all active sessions and requiring manual server restart.

Mitigation

Update to the latest version once patches are available.

References

https://github.com/BishopFox/sliver/security/advisories/GHSA-hx52-cv84-jr5v

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-29781
Severity: N/a
Type: denial_of_service
Status: unconfirmed

CWE

CWE-476

CVSS Metrics

N/A