{"uuid": "f9c16d0a-ee9e-4f8c-8f1b-6ae77c57066b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27090", "type": "seen", "source": "https://t.me/brutsecurity/1548", "content": "\ud83d\udc7b\ud83d\udc7b\ud83d\udc7bSSRF in Sliver C2 (CVE-2025-27090), allowing an attacker to read and write TCP traffic through affected teamservers. \n\n\ud83d\udd25\ud83d\udd25\ud83d\udd25Demo shows leaking the IP of a Sliver teamserver hidden behind redirectors.\n\nWriteup- https://blog.chebuya.com/posts/server-side-request-forgery-on-sliver-c2/\n\nPOC- https://github.com/chebuya/exploits/tree/main/CVE-2025-27090%3A%20Sliver%20C2%20SSRF", "creation_timestamp": "2026-07-10T00:00:33.205159Z"}