Lucene search
K

193 matches found

Vulnrichment
Vulnrichment
added 2024/06/20 8:13 p.m.15 views

CVE-2024-6154 Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

8.2CVSS7.2AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2024/06/20 8:13 p.m.105 views

CVE-2024-6154

CVE-2024-6154 affects Parallels Desktop Toolgate, where a heap-based buffer overflow in the Toolgate component is caused by inadequate validation of the length of user-supplied data before copying to a fixed-size heap buffer. This allows local attackers who can run high-privileged code on the gue...

8.2CVSS7.6AI score0.0025EPSS
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2024/06/18 12:0 a.m.17 views

Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the Toolgat...

8.2CVSS7.4AI score0.0025EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2024/05/03 2:15 a.m.9 views

CVE-2023-27326

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest...

8.2CVSS7.5AI score0.0126EPSS
Exploits1References4
NVD
NVD
added 2024/05/03 2:15 a.m.21 views

CVE-2023-27326

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest...

8.2CVSS8.3AI score0.0126EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 2:15 a.m.3 views

CVE-2023-27328

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system i...

7.8CVSS7.4AI score0.00321EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/03 2:15 a.m.6 views

CVE-2023-27328

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system i...

7.8CVSS6.2AI score0.00321EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 2:15 a.m.2 views

CVE-2023-27327

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

7.5CVSS7.4AI score0.00405EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/03 2:15 a.m.4 views

CVE-2023-27326

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest...

8.2CVSS6.2AI score0.0126EPSS
Exploits1References2
OSV
OSV
added 2024/05/03 2:15 a.m.7 views

CVE-2023-27327

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

7.5CVSS6.2AI score0.00405EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 2:15 a.m.21 views

CVE-2023-27327

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

7.5CVSS7.7AI score0.00405EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 2:15 a.m.20 views

CVE-2023-27328

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system i...

7.8CVSS7.9AI score0.00321EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 1:55 a.m.25 views

CVE-2023-27328 Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system i...

7.8CVSS8.1AI score0.00321EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 1:55 a.m.18 views

CVE-2023-27328 Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute low-privileged code on the target guest system i...

7.8CVSS7.4AI score0.00321EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:55 a.m.69 views

CVE-2023-27328

Parallels Desktop Toolgate XML Injection Local Privilege Escalation: Affected component is Toolgate within Parallels Desktop. Root cause is improper validation of a user-supplied string used to construct an XML document, enabling a local attacker to escalate privileges and execute arbitrary code ...

7.8CVSS7.9AI score0.00321EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:55 a.m.80 views

CVE-2023-27326

CVE-2023-27326 is a local privilege escalation in Parallels Desktop where the Toolgate component fails to validate a user-supplied path, enabling directory traversal and arbitrary code execution as the current host user. Exploitation requires prior high-privilege code execution on the guest syste...

8.2CVSS8.3AI score0.0126EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 1:55 a.m.28 views

CVE-2023-27326 Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest...

8.2CVSS8.5AI score0.0126EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/03 1:55 a.m.25 views

CVE-2023-27327 Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

7.5CVSS7.9AI score0.00405EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:55 a.m.75 views

CVE-2023-27327

CVE-2023-27327 concerns Parallels Desktop Toolgate, a local privilege escalation. The flaw arises from missing locking when operating on an object within Toolgate, enabling a local attacker who can run high-privileged code on the guest to escalate privileges and execute code in the host context. ...

7.5CVSS7.8AI score0.00405EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 1:55 a.m.17 views

CVE-2023-27327 Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target...

7.5CVSS7.2AI score0.00405EPSS
Exploits0References2
Rows per page
Query Builder