CVEs-PoC/2018/CVE-2018-4050.md

### [CVE-2018-4050](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4050)
![](https://img.shields.io/static/v1?label=Product&message=GOG%20Galaxy&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=local%20privilege%20escalation&color=brighgreen)

### Description

An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. An attacker can globally adjust folder permissions leading to execution of arbitrary code with elevated privileges.

### POC

#### Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2018-0724

#### Github
No PoCs found on GitHub currently.