CVE-2023-24205 | Clash 0.20.12 on Windows Configuration File cfw-setting.yaml permission assignment (Issue 3891 / EUVD-2023-28264)
A vulnerability was found in Clash 0.20.12 on Windows. It has been rated as critical. The affected element is an unknown function of the file cfw-setting.yaml of the component Configuration File Handler. The manipulation leads to incorrect permission assignment.
This vulnerability is documented as CVE-2023-24205. The attack can be initiated remotely. There is not any exploit available.