TunnelCrack Vulnerabilities

SonicWall Security Advisory

SonicWall PSIRT is aware of a research publication that outlines a series of attacks known as ‘TunnelCrack’ vulnerabilities.

These attacks occur when VPN client traffic leaks outside of the secure VPN tunnel, typically happening when clients connect to untrusted networks, like rogue Wi-Fi access points. A Local Network attacker takes advantage of local network access features in various VPN clients from different vendors, allowing an attacker to access unencrypted traffic and an attacker intercepts traffic that’s directed to a fake VPN gateway using DNS spoofing attacks.

However, these attacks do not provide the attacker with the ability to decrypt HTTPS or other encrypted traffic. 

CVE: CVE-2023-36671, CVE-2023-36672, CVE-2023-35838, CVE-2023-36673
Last updated: Oct. 31, 2023, 5:44 a.m.