Cato CTRL Threat Brief: CVE-2024-3661 – VPN Vulnerability (“TunnelVision”)
CATO Networks
MAY 23, 2024
On May 6 th , 2024, researchers from the Leviathan Security Group published an article detailing a technique to bypass most VPN applications, assigned as CVE-2024-3661 with a High CVSS score of 7.6. This encrypted packet is then encapsulated within the VPN protocol layer, allowing secure communication with the VPN server.
52 
Let's personalize your content