CVE-2020-7352

Name of the Vulnerable Software and Affected Versions GOG Galaxy versions 1.2.x through 1.2.64 GOG Galaxy versions 2.0.x through 2.0.12

Description The GalaxyClientService component of GOG Galaxy runs with elevated SYSTEM privileges in a Windows environment. Due to the software shipping with an embedded, static RSA private key, an attacker with this key material and local user permissions can send any operating system command to the service for execution in this elevated context. The service listens for such commands on a locally-bound network port, localhost:9978.

Recommendations For GOG Galaxy versions 1.2.x through 1.2.64, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For GOG Galaxy versions 2.0.x through 2.0.12, update to a version that includes the fix issued for the 2.0.x branch.