Описание
An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally create directories and subdirectories on the root file system, as well as change the permissions of existing directories.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gog:galaxy:1.2.47:*:*:*:*:macos:*:*
EPSS
Процентиль: 23%
0.00077
Низкий
7.1 High
CVSS3
5.5 Medium
CVSS3
4.9 Medium
CVSS2
Дефекты
CWE-732
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally create directories and subdirectories on the root file system, as well as change the permissions of existing directories.
EPSS
Процентиль: 23%
0.00077
Низкий
7.1 High
CVSS3
5.5 Medium
CVSS3
4.9 Medium
CVSS2
Дефекты
CWE-732