Comment by jamesgeck0

Friendly reminder that GOG ignored and downplayed the GOG Galaxy 0-day privilege escalation bug CVE-2020-24574 [1] for literal years. They tried to brush off the security researcher who reported the issue by rotating keys and claiming it was fixed. Their non-serious stance towards security means Galaxy isn't really software I want running on my system anymore.

1. https://nvd.nist.gov/vuln/detail/CVE-2020-24574