CVE-2024-41111

Name of the Vulnerable Software and Affected Versions Sliver version 1.6.0 (prerelease) Sliver versions prior to 1.6.0

Description Sliver is an open source cross-platform adversary emulation/red team framework that can be used by organizations of all sizes to perform security testing. It is vulnerable to remote code execution (RCE) on the teamserver by a low-privileged "operator" user, allowing the operator to run commands as the system root user. This vulnerability can be exploited to view all console logs, kick all other operators, view and modify files stored on the server, and ultimately delete the server. The issue arises from a command injection in the generate msf-stager command, which can be used to inject the --out flag to msfvenom and overwrite Sliver's own go binary.

Recommendations For Sliver version 1.6.0 (prerelease), avoid using Sliver in production until the issue is resolved. For Sliver versions prior to 1.6.0, update to a version that includes the fix for this issue, once available. As a temporary workaround, consider restricting access to the generate msf-stager command to prevent exploitation. Restrict access to the vulnerable msfvenom command to minimize the risk of exploitation. Avoid using the --out flag in the generate msf-stager command until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.