CVE-2018-4052
6.2
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
An exploitable local information leak vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can pass a PID and receive information running on it that would usually only be accessible to the root user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| GOG.COM | GOG Galaxy | Gog Galaxy 1.2.47 (macOS) | affected |
Weaknesses
- improper input validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.