6.8 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.6%
Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.
CPE | Name | Operator | Version |
---|---|---|---|
parallels:parallels_desktop | parallels parallels desktop | eq | * |