2 matches found
CVE-2021-31429
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-31429
Parallels Desktop 15.1.5-47309 is affected. The flaw is in the IDE virtual device where the length of user-supplied data is not properly validated before being copied to a fixed-length heap-based buffer, causing a heap-based buffer overflow. This enables local attackers who already have high-priv...