Cato CTRL Threat Brief: CVE-2024-3661 – VPN Vulnerability (“TunnelVision”)
CATO Networks
MAY 23, 2024
The attack requires introducing a rogue DHCP server to the local network. This is not easy on well-maintained networks, that use trust zones and DHCP snooping features to prevent this attack vector. In the case presented in the article, the malicious DHCP server poisons the routing table of its neighbor on the local network.
52 
Let's personalize your content