CVE-2018-4052

Summary

An exploitable local information leak vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can pass a PID and receive information running on it that would usually only be accessible to the root user.

Affected Software

VendorProductVersion RangeStatus
GOG.COMGOG GalaxyGog Galaxy 1.2.47 (macOS)affected

Weaknesses

  • improper input validation

ADP Enrichment

CVE Program Container

Additional References

References