Expressvpn · Expressvpn · CVE-2024-25728
**Name of the Vulnerable Software and Affected Versions**
ExpressVPN versions prior to 12.73.0 on Windows
**Description**
The issue is related to the split tunneling feature in ExpressVPN, which sends DNS requests according to the Windows configuration instead of using the ExpressVPN DNS servers. This may allow remote attackers to obtain sensitive information about websites visited by VPN users.
**Recommendations**
For ExpressVPN versions prior to 12.73.0 on Windows, update to version 12.73.0 or later to resolve the issue.
As a temporary workaround, consider disabling the split tunneling feature until a patch is available.