Vulnerabilities > GOG > Galaxy > 1.2.40
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-14 | CVE-2020-11827 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. | 7.8 |
| 2019-11-21 | CVE-2019-15511 | Missing Authentication for Critical Function vulnerability in GOG Galaxy An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. | 7.8 |