Critical severity9.8NVD Advisory· Published Mar 28, 2022· Updated Jun 17, 2026
CVE-2022-26255
CVE-2022-26255
Description
Clash for Windows v0.19.8 was discovered to allow arbitrary code execution via a crafted payload injected into the Proxies name column.
Affected products
3- Clash for Windows/Clash for Windowsdescription
- Range: <0.19.8
- Range: <0.19.8
Patches
Vulnerability mechanics
References
1- github.com/Fndroid/clash_for_windows_pkg/issues/2710nvdExploitIssue TrackingRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.