Version 1.11.5 of Viscosity has been released for both macOS and Windows! This update includes performance improvements, updated versions of OpenVPN (2.6.14) and OpenSSL (3.0.16), as well as many improvements and bug fixes for both platforms.

In particular, we've been working on improving Viscosity's localization support, with tweaks and enhancements for text rendering and controls. We've also fixed a number of small interface issues that should improve the UI experience when using Viscosity in different languages.

This update also includes some important bug fixes, including resolving an issue that could cause TAP interfaces to fail to activate on older versions of macOS, and static challenges using certain special characters to fail on Windows.

The macOS version also includes hardening against potential TCC (Transparency, Consent, and Control) bypass attacks. This addresses a low-severity security vulnerability (CVE-2025-4412) that could allow an attacker (who already has control over the logged in user's account) to assume Viscosity's TCC identity. Viscosity has no special resource access entitlements, so this is of limited utility. However it could still allow the attacker to use Viscosity's TCC identity when attempting to access TCC protected files or directories (such as the Documents or Desktop folders). Special thanks to Karol Mazurek for identifying and reporting this issue.

Finally, both macOS 11 (Big Sur) and Windows 10 32-bit are no longer supported. Mac users are encouraged to update to macOS 12 or later, while Windows users are encouraged to update to Windows 64-bit. 64-bit versions of Windows include Windows 10 x64, Windows 10 ARM64, and all versions of Windows 11. Older Viscosity releases can still be found at the Legacy Downloads page if required.

Version 1.11.5 Mac Release Notes:

Version 1.11.5 Windows Release Notes:

The 1.11.5 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.