A new cybersecurity flaw named 'TunnelVision' (CVE-2024-3661) has been identified, which allows attackers to manipulate VPN traffic by exploiting a DHCP design flaw. This vulnerability affects virtually all VPN applications, enabling attackers to bypass VPN protections and potentially expose user data. The attack specifically targets the routing tables of devices using VPNs, which can lead to a complete bypass of traffic meant for VPNs. Notably, Android devices have mitigations in place against this flaw. This has raised significant concerns about the security and effectiveness of VPNs in protecting user privacy.