0.004 Low
EPSS
Percentile
73.3%
Clash for Windows v0.20.12 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via overwriting the configuration file (cfw-setting.yaml).
github.com/Fndroid/clash_for_windows_pkg
github.com/Fndroid/clash_for_windows_pkg/issues/3891