CVE-2024-3661 - How DHCP Route Injection Exposes VPN Traffic to Attackers (With Exploit Example)
Summary:
A new vulnerability, CVE-2024-3661, exposes a flaw in how VPNs rely on routing rules for security. By abusing DHCP’s _classless static route option_