tunnelblick icon Tunnelblick free software for OpenVPN on macOS We need translators for several languages…

Highlighted Articles
  News
  Installing Tunnelblick
  Uninstalling Tunnelblick
  Setting up Configurations
  Using Tunnelblick
  Getting VPN Service
  Common Problems
  Configuring OpenVPN
  Release Notes
  Thanks
  FAQ

Discussion Group
  Read Before You Post

Tunnelblick Security Vulnerability CVE-2025-43711

Egor Filatov (Positive Technologies) has informed Tunnelblick developers of a security vulnerability in Tunnelblick. The vulnerability has been assigned CVE-2025-43711.

Tunnelblick versions 7.0 and 7.1beta01 fix the vulnerability and were released on 2025-04-22.

These new versions require macOS 13 ("Ventura") or higher, so anyone using earlier versions of macOS and using most earlier versions of Tunnelblick will remain vulnerable. There are no current plans to release updates to earlier versions of Tunnelblick to address the vulnerability, however, there are mitigations.

Further details about the vulnerability, including mitigations for earlier versions of Tunnelblick, will be available on this page no later than 2025-06-10. Subscribe to the Tunnelblick Announcement List to be informed when that happens.