clash-verge-service-ipc before 2
clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation.
Exploitability
AV:L
AC:L
PR:N
UI:N
Scope
S:U
Impact
C:H
I:H
A:H
8.4/CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Configuration
CWE-732