A vulnerability classified as critical was found in GOG Galaxy up to 2.0.67.2/2.0.71.2. This vulnerability affects unknown code of the file GalaxyClient.exe of the component Inter-Process Communication. The manipulation of the argument FixDirectoryPrivileges leads to permission issues.

This vulnerability was named CVE-2023-50914. An attack has to be approached locally. There is no exploit available.