2 matches found
CVE-2021-31428
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-31428
CVE-2021-31428 affects Parallels Desktop 15.1.5-47309, with the vulnerability located in the IDE virtual device. The issue is a heap-based buffer overflow caused by improper validation of the length of user-supplied data before copying to a fixed-length heap buffer, enabling local privilege escal...