Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PureVPN client applications on Linux through September 2025 allow IPv6 traffic to leak outside the VPN tunnel upon network events such as Wi-Fi reconnect or system resume. In the CLI client, the VPN auto-reconnects and claims to be connected, but IPv6 traffic is no longer routed or blocked. In the GUI client, the IPv6 connection remains functional after disconnection until the user clicks Reconnect. In both cases, the real IPv6 address is exposed to external services, violating user privacy and defeating the advertised IPv6 leak protection. This affects CLI 2.0.1 and GUI 2.10.0.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
在范围间的资源转移不正确
Vulnerability Title
PureVPN 安全漏洞
Vulnerability Description
PureVPN是PureVPN公司的一个 VPN 软件。 PureVPN CLI 2.0.1版本和GUI 2.10.0版本存在安全漏洞,该漏洞源于IPv6流量在网络事件后泄露,可能导致用户隐私泄露。
CVSS Information
N/A
Vulnerability Type
N/A