CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5732 – Clash Proxy Port improper authentication
https://notcve.org/view.php?id=CVE-2024-5732
A vulnerability was found in Clash up to 0.20.1 on Windows. It has been declared as critical. This vulnerability affects unknown code of the component Proxy Port. The manipulation leads to improper authentication. The attack can be initiated remotely. • https://github.com/GTA12138/vul/blob/main/clash%20for%20windows.md https://vuldb.com/?ctiid.267406 https://vuldb.com/?id.267406 https://vuldb.com/?submit.345469 • CWE-287: Improper Authentication •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-24772
https://notcve.org/view.php?id=CVE-2020-24772
In Dreamacro Clash for Windows v0.11.4, an attacker could embed a malicious iframe in a website with a crafted URL that would launch the Clash Windows client and force it to open a remote SMB share. Windows will perform NTLM authentication when opening the SMB share and that request can be relayed (using a tool like responder) for code execution (or captured for hash cracking). En Dreamacro Clash para Windows v0.11.4, un atacante podría incrustar un iframe malicioso en un sitio web con una URL manipulada que lanzaría el cliente Clash Windows y lo forzaría a abrir un recurso compartido SMB remoto. Windows realizará la autenticación NTLM al abrir el recurso compartido SMB y esa solicitud puede ser retransmitida (utilizando una herramienta como responder) para la ejecución de código (o capturada para el cracking de hash) • https://github.com/Dreamacro/clash/issues/910 • CWE-346: Origin Validation Error •