CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Clash Project: >> Clash >> 0.20.12 Security Vulnerabilities

CVE-2023-24205

Clash for Windows v0.20.12 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via overwriting the configuration file (cfw-setting.yaml).

CVSS Score

9.8

EPSS Score

0.008

Published

2023-02-23

Page 1

Vulnerabilities

Vulnerable Software

Clash Project: >> Clash >> 0.20.12 Security Vulnerabilities

Products

Pricing

Contact Us