CVE-2018-4048

An exploitable local privilege elevation vulnerability exists in the file system permissions of the `Temp` directory in GOG Galaxy 1.2.48.36 (Windows 64-bit Installer). An attacker can overwrite executables of the Desktop Galaxy Updater to exploit this vulnerability and execute arbitrary code with SYSTEM privileges.
References
Link Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0722 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:gog:galaxy:1.2.48.36:*:*:*:*:*:*:*

Information

Published : 2019-05-30 05:29

Updated : 2022-06-07 04:48


NVD link : CVE-2018-4048

Mitre link : CVE-2018-4048

Products Affected
No products.
CWE