Browse all 8 CVE security advisories affecting BishopFox. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BishopFox specializes in penetration testing and security assessments, helping organizations identify vulnerabilities before malicious actors exploit them. Historically, their findings have commonly involved remote code execution, cross-site scripting, and privilege escalation vulnerabilities across web applications, APIs, and internal systems. The firm maintains a record of 8 CVEs for responsibly disclosed flaws, demonstrating their focus on critical security research. While no major public incidents are directly tied to BishopFox, their work often involves high-stakes environments, including financial services and healthcare sectors, where their findings have prevented potential breaches. Their approach emphasizes real-world attack scenarios rather than automated scanning, providing clients with practical remediation guidance.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34227 | Sliver One-Click Remote Access: Insecure CORS & Unauthenticated MCP Interface — sliverCWE-306 | 8.8AI | HighAI | 2026-03-31 |
| CVE-2026-32941 | Sliver Vulnerable to Authenticated OOM via Memory Exhaustion in mTLS/WireGuard Transports — sliverCWE-770 | 6.5 | - | 2026-03-20 |
| CVE-2026-29781 | Sliver: Authenticated Nil-Pointer Dereference in Handlers — sliverCWE-476 | 6.5 | - | 2026-03-07 |
| CVE-2026-25791 | Sliver has a DNS C2 OTP Bypass Allows Unauthenticated Session Flooding and Denial of Service — sliverCWE-306 | 7.5 | High | 2026-02-09 |
| CVE-2026-25760 | Website Path Traversal / Arbitrary File Read (Authenticated) in Sliver — sliverCWE-22 | 6.5 | Medium | 2026-02-06 |
| CVE-2025-27093 | Sliver does not restricted traffic between Wireguard clients. — sliverCWE-284 | 6.3 | Medium | 2025-10-28 |
| CVE-2025-27090 | Server-Side Request Forgery (SSRF) in sliver teamserver — sliverCWE-918 | 4.3 | - | 2025-02-19 |
| CVE-2024-41111 | BishopFox Sliver Authenticated Remote Code Execution — sliverCWE-74 | 7.2 | High | 2024-07-18 |
This page lists every published CVE security advisory associated with BishopFox. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.