Local Privilege Escalation Vulnerability in GOG Galaxy by GOG
CVE-2019-15511

7.8HIGH

Key Information:

Vendor: Gog
Status: Galaxy
Vendor: CVE Published:; 21 November 2019

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2019-15511?

A local privilege escalation vulnerability exists in the GOG Galaxy client, allowing attackers to exploit improper access control mechanisms. By sending unauthorized local TCP packets to the GalaxyClientService, an attacker can potentially elevate their access to SYSTEM privileges on Windows systems where GOG Galaxy is installed. This affects all versions of GOG Galaxy prior to 1.2.60, as well as all GOG Galaxy 2.0 Beta releases. It is imperative for users to update their installations to mitigate the risk associated with this vulnerability.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2019-15511
Created by adenkiewicz

References

https://support.gog.com/hc/en-us/articles/360025458833-GO...

x_refsource_MISC

https://cqureacademy.com/cqure-labs/cqlabs-cve-2019-15511...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 21, 2019
Vulnerability Reserved
Aug 23, 2019
🟡
Public PoC available
Aug 21, 2019
👾
Exploit known to exist
Aug 21, 2019

Gog

Badges

What is CVE-2019-15511?

Exploit Proof of Concept (PoC)

References

CVSS V3.1

Timeline