High severity7.8NVD Advisory· Published Apr 2, 2019· Updated Jun 17, 2026
CVE-2018-3974
CVE-2018-3974
Description
An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's install directory. An attacker can overwrite an executable that is launched as a system service on boot by default to exploit this vulnerability and execute arbitrary code with system privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: Gog Galaxy 1.2.45.61 (Windows 64-bit Installer)
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2018-0640nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.