CVE-2018-4051
7.1
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Summary
An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally create directories and subdirectories on the root file system, as well as change the permissions of existing directories.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| GOG.COM | GOG Galaxy | Gog Galaxy 1.2.47 (macOS) | affected |
Weaknesses
- improper input validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.