Vulnerabilities > GOG > Galaxy > 1.2.48.36
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-14 | CVE-2020-11827 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. | 7.8 |
| 2019-11-21 | CVE-2019-15511 | Missing Authentication for Critical Function vulnerability in GOG Galaxy An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. | 7.8 |
| 2019-05-30 | CVE-2018-4048 | Exposure of Resource to Wrong Sphere vulnerability in GOG Galaxy 1.2.48.36 An exploitable local privilege elevation vulnerability exists in the file system permissions of the `Temp` directory in GOG Galaxy 1.2.48.36 (Windows 64-bit Installer). | 7.8 |
| 2019-04-02 | CVE-2018-4049 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.48.36 An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 (Windows 64-bit Installer). | 7.8 |