Bugs Discovered in macOS Versions 14.6 to 15.1: VPN Connections Leak Small Amounts of Traffic

Many businesses rely on internal VPNs to encrypt web traffic and enhance security, necessitating employees to connect to the company's intranet via a VPN using their account credentials.

However, a bug has been identified in Apple's macOS versions 14.6 to 15.1 (currently still in testing) that allows small amounts of traffic to bypass the encrypted tunnel, leading to a leakage.

Under normal circumstances, once a global VPN connection is activated, all traffic should be transmitted through the encrypted tunnel as directed by the routing table.

Due to an unknown issue, the macOS firewall might not function properly, potentially ignoring firewall rules. Despite this, the majority of traffic continues through the tunnel, but certain applications do not adhere to the routing table, thus some traffic may pass through a regular connection.

The software developer Mullvad discovered this issue and has reported it to the Apple security team. As of the publication of this article, Apple has not yet issued a statement, so it is unclear whether this is a bug in the system or related to third-party software.

Here is how to verify the bug:

Add a firewall rule to block all traffic

echo "block drop quick all" | sudo pfctl -ef -

2.Attempt to direct traffic outside the encrypted tunnel.

curl https://am.i.mullvad.net/connected

3.For post-test cleanup, disable the firewall and clear all rules.

sudo pfctl -d
sudo pfctl -f /etc/pf.conf

4.Ensure all encrypted tunnel connections are disconnected, then identify the default network interface.

route get mullvad.net | sed -nE's/.*interface: //p'

5.Connect to the encrypted tunnel and run the following command (replace <interface> with the interface identified in the previous step):

curl --interface <interface> https://am.i.mullvad.net/connected

6.In the last step, if you experience a connection timeout, it indicates normal operation; however, if you still receive a response, it indicates a traffic leakage issue.

Apple(125)BUG(29)Encrypted tunnel(2)Mac(34)macOS(23)VPN(10)

Copyright Notice:
Thank you for reading. This article was written by Landian News, and the author is Brook.X. If you wish to repost this article, please include a link to the original: https://landian.news/article/3770.html

{{userData.name}}

Bugs Discovered in macOS Versions 14.6 to 15.1: VPN Connections Leak Small Amounts of Traffic

Apple in Talks with More AI Companies to Integrate Models, But Won't Pay Them; Instead, Takes a Cut from Subscriptions

Windows 11 24H2 Update Causes 8.63GB of Cache that Can't Be Cleared

Apple Initiates Emergency Update to Aid in FaceTime Call Fraud Prevention, Details Unclear

Apple's iOS 16.5 Update Incites User Backlash: Lightning to USB 3 Adapter Compatibility in Question

Microsoft Investigates OneDrive for Mac Freezing Issues during File Operations

Apple Adds Multiple New Screensavers in tvOS 18.2 Beta, Including Snoopy and Movies

Apple Updates macOS Screen Recording Authorization from 1 Week to 1 Month, But This Free App Can Permanently Disable Authorization Reminders

Microsoft Lifts Update Ban for Windows and Office in Russia: What’s Next?

Docker-OSX Repository Removed for Copyright Infringement, GitHub Still Hosts Resources

NVIDIA Surpasses Microsoft and Apple to Become the World's Highest-Valued Company

MAS v2.8: The Ultimate Free Activation Script for Windows & Office

Arc Browser Halts Development: What's Next for The Browser Company?

Microsoft Once Again Delays the Launch of Windows Recall, Citing the Need for Further Refinement

Apple No Longer Requires Developers to Be in the EU for Debugging iOS Alternative Browser Engines/NFC, etc.

OpenAI's ChatGPT for Windows/Mac Client Introduces Advanced Real-Time Voice Features

Apple Allows EU Users to Delete Core Apps Like App Store and Photos in iOS 18.2

Apple Blocks Methods to Bypass AI Restrictions in iOS 18.2 Beta 3, Including Nugget Software

Linux Kernel Project Removes Entries of Several Russian Contributors Due to "Compliance Requirements"