{"containers":{"cna":{"affected":[{"product":"GOG Galaxy","vendor":"Talos","versions":[{"status":"affected","version":"Gog Galaxy 1.2.47 (macOS)"}]}],"datePublic":"2019-03-26T00:00:00.000Z","descriptions":[{"lang":"en","value":"An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally adjust folder permissions leading to execution of arbitrary code with elevated privileges."}],"metrics":[{"cvssV3_0":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"NONE","baseScore":7.1,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N","version":"3.0"}}],"problemTypes":[{"descriptions":[{"description":"local privilege escalation","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2022-04-19T18:08:59.000Z","orgId":"b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b","shortName":"talos"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://talosintelligence.com/vulnerability_reports/TALOS-2018-0724"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"talos-cna@cisco.com","ID":"CVE-2018-4050","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"GOG Galaxy","version":{"version_data":[{"version_value":"Gog Galaxy 1.2.47 (macOS)"}]}}]},"vendor_name":"Talos"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally adjust folder permissions leading to execution of arbitrary code with elevated privileges."}]},"impact":{"cvss":{"baseScore":7.1,"baseSeverity":"High","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N","version":"3.0"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"local privilege escalation"}]}]},"references":{"reference_data":[{"name":"https://talosintelligence.com/vulnerability_reports/TALOS-2018-0724","refsource":"CONFIRM","url":"https://talosintelligence.com/vulnerability_reports/TALOS-2018-0724"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T05:04:29.151Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://talosintelligence.com/vulnerability_reports/TALOS-2018-0724"}]}]},"cveMetadata":{"assignerOrgId":"b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b","assignerShortName":"talos","cveId":"CVE-2018-4050","datePublished":"2019-04-01T18:29:38.000Z","dateReserved":"2018-01-02T00:00:00.000Z","dateUpdated":"2024-08-05T05:04:29.151Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}