Medium severity6.7NVD Advisory· Published Apr 30, 2024· Updated Apr 15, 2026
CVE-2023-50914
CVE-2023-50914
Description
A Privilege Escalation issue in the inter-process communication procedure from GOG Galaxy (Beta) 2.0.67.2 through v2.0.71.2 allows authentictaed users to change the DACL of arbitrary system directories to include Everyone full control permissions by modifying the FixDirectoryPrivileges instruction parameters sent from GalaxyClient.exe to GalaxyClientService.exe.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 2.0.67.2 - 2.0.71.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.