Vulnerabilities > GOG > Galaxy > 1.2.47

DATE CVE VULNERABILITY TITLE RISK
2020-07-14 CVE-2020-11827 Improper Privilege Management vulnerability in GOG Galaxy
In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe.
local
low complexity
gog CWE-269
7.2
7.2
2019-11-21 CVE-2019-15511 Improper Privilege Management vulnerability in GOG Galaxy
An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy.
local
low complexity
gog CWE-269
7.2
7.2
2019-04-02 CVE-2018-4053 Improper Input Validation vulnerability in GOG Galaxy 1.2.47
An exploitable local denial-of-service vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS.
local
low complexity
gog CWE-20
2.1
2.1
2019-04-02 CVE-2018-4052 Information Exposure vulnerability in GOG Galaxy 1.2.47
An exploitable local information leak vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS.
local
low complexity
gog CWE-200
2.1
2.1
2019-04-02 CVE-2018-4051 Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.47
An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS.
local
low complexity
gog CWE-732
4.9
4.9
2019-04-01 CVE-2018-4050 Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.47
An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS.
local
low complexity
gog CWE-732
7.2
7.2