2 matches found
CVE-2020-8874
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2020-8874
CVE-2020-8874 affects Parallels Desktop 15.1.2-47123. The flaw is in the xHCI component and stems from inadequate validation of user-supplied data, causing an integer overflow before a buffer is allocated. This enables a local attacker who already can run high-privileged code on the guest to esca...