VYPR

Galaxy

by Galaxyproject

Source repositories

CVEs (17)

  • CVE-2023-27578CriMar 20, 2023
    risk 0.59cvss 9.1epss 0.01

    Galaxy is an open-source platform for data analysis. All supported versions of Galaxy are affected prior to 22.01, 22.05, and 23.0 are affected by an insufficient permission check. Unsupported versions are likely affected as far back as the functionality of Visualizations/Pages…

  • CVE-2020-24574HigAug 21, 2020
    risk 0.51cvss 7.8epss 0.01

    The client (aka GalaxyClientService.exe) in GOG GALAXY through 2.0.41 (as of 12:58 AM Eastern, 9/26/21) allows local privilege escalation from any authenticated user to SYSTEM by instructing the Windows service to execute arbitrary commands. This occurs because the attacker can…

  • CVE-2020-11827HigJul 14, 2020
    risk 0.51cvss 7.8epss 0.00

    In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. An attacker can put malicious code in a Trojan horse GalaxyClientService.exe. After that, the attacker can re-start this service as an unprivileged user to…

  • CVE-2019-15511HigNov 21, 2019
    risk 0.51cvss 7.8epss 0.01

    An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. Due to Improper Access Control, an attacker can send unauthenticated local TCP packets to the service to gain SYSTEM privileges in Windows system where GOG Galaxy…

  • CVE-2018-4048HigMay 30, 2019
    risk 0.51cvss 7.8epss 0.01

    An exploitable local privilege elevation vulnerability exists in the file system permissions of the `Temp` directory in GOG Galaxy 1.2.48.36 (Windows 64-bit Installer). An attacker can overwrite executables of the Desktop Galaxy Updater to exploit this vulnerability and execute…

  • CVE-2018-4049HigApr 2, 2019
    risk 0.51cvss 7.8epss 0.00

    An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 (Windows 64-bit Installer). An attacker can overwrite executables of installed games to exploit this vulnerability and execute…

  • CVE-2018-3974HigApr 2, 2019
    risk 0.51cvss 7.8epss 0.01

    An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's install directory. An attacker can overwrite an executable that is launched as a system service on boot by default to exploit this vulnerability and execute arbitrary…

  • CVE-2018-4050HigApr 1, 2019
    risk 0.51cvss 7.8epss 0.00

    An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally adjust folder permissions leading to execution of arbitrary code with elevated privileges.

  • CVE-2023-50914MedApr 30, 2024
    risk 0.44cvss 6.7epss 0.01

    A Privilege Escalation issue in the inter-process communication procedure from GOG Galaxy (Beta) 2.0.67.2 through v2.0.71.2 allows authentictaed users to change the DACL of arbitrary system directories to include Everyone full control permissions by modifying the…

  • CVE-2023-50915MedApr 30, 2024
    risk 0.42cvss 6.5epss 0.01

    An issue exists in GalaxyClientService.exe in GOG Galaxy (Beta) 2.0.67.2 through 2.0.71.2 that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC Object Manager symbolic link and could result in a…

  • CVE-2023-42812MedSep 22, 2023
    risk 0.41cvss 6.3epss 0.00

    Galaxy is an open-source platform for FAIR data analysis. Prior to version 22.05, Galaxy is vulnerable to server-side request forgery, which allows a malicious to issue arbitrary HTTP/HTTPS requests from the application server to internal hosts and read their responses. Version…

  • CVE-2018-4053MedApr 2, 2019
    risk 0.36cvss 5.5epss 0.00

    An exploitable local denial-of-service vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can send malicious data to the root-listening service, causing the application to terminate and become unavailable.

  • CVE-2018-4052MedApr 2, 2019
    risk 0.36cvss 5.5epss 0.00

    An exploitable local information leak vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can pass a PID and receive information running on it that would usually only be accessible to the root user.

  • CVE-2020-7352HigAug 6, 2020
    risk 0.03cvss 8.4epss 0.04

    The GalaxyClientService component of GOG Galaxy runs with elevated SYSTEM privileges in a Windows environment. Due to the software shipping with embedded, static RSA private key, an attacker with this key material and local user permissions can effectively send any operating…

  • CVE-2024-42346Sep 20, 2024
    risk 0.01cvss epss 0.01

    Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon…

  • CVE-2024-42351Sep 20, 2024
    risk 0.00cvss epss 0.00

    Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. An attacker can potentially replace the contents of public datasets resulting in data loss or tampering. All supported…

  • CVE-2022-23470HigDec 6, 2022
    risk 0.00cvss 8.6epss 0.01

    Galaxy is an open-source platform for data analysis. An arbitrary file read exists in Galaxy 22.01 and Galaxy 22.05 due to the switch to Gunicorn, which can be used to read any file accessible to the operating system user under which Galaxy is running. This vulnerability affects…