239
ExpressVPN bug leaks DNS requests for Windows users with split tunneling:
(www.bleepingcomputer.com)
This is a most excellent place for technology news and articles.
Uh, I might be wrong here, but isn’t the whole purpose of split tunneling to allow you to send only necessary traffic through a given tunnel? Then the rest of your traffic goes whatever the default path is?
This seems more like a feature than a CVE. Maybe I’m missing something.
They might mean it's happening even with requests routed through the VPN.
so it would be like you say I want Firefox to go thru the tunnel, you would want the DNS requests made from it to go thru as well, in this case they weren't tunneled and were just going to the normal dns server