Exploit for Improper Preservation of Permissions in Gog Galaxy CVE-2022-31262

Name: Exploit for Improper Preservation of Permissions in Gog Galaxy CVE-2022-31262
Rating: 5 (308 reviews)

2022-08-11 | CVSS 4.3

## https://sploitus.com/exploit?id=C4AB29B4-E500-57EF-8CF0-D831B7B0C5B1
# CVE-2022-31262
GOG Galaxy 2.X LPE Exploit [CVE-2022-31262](https://vulners.com/cve/CVE-2022-31262)

Tested Versions 2.0.46 - 2.0.51 (latest at 11.08.2022), older versions may also be vulnerable

Blog Post about the finding: https://secure77.de/gog-galaxy-cve-2022-31262/

LPE found via: https://github.com/secure-77/PSAccessFinder

## POC Demo

[![Demo POC](https://github.com/secure-77/CVE-2022-31262/blob/main/poc.gif)](https://www.youtube.com/watch?v=Bgdbx5TJShI)

Thanks to [Wh04m1001](https://github.com/Wh04m1001) for the cpp support