125 matches found
CVE-2021-34869
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
CVE-2021-34869
Parallels Desktop 16.1.3-49160 is affected by CVE-2021-34869 in the Toolgate component. The flaw is caused by a lack of proper validation of user-supplied data, leading to uncontrolled memory allocation. An attacker who can run low-privileged code on the target guest OS can escalate privileges an...
CVE-2021-34868
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
CVE-2021-34868
Parallels Desktop 16.1.3-49160 contains a local privilege-escalation flaw in the Toolgate component. The issue stems from improper validation of user-supplied data, causing uncontrolled memory allocation, and enabling an attacker with low-privilege, local code execution on the guest to escalate p...
CVE-2021-34867
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-34867
CVE-2021-34867 refers to a local privilege escalation in Parallels Desktop 16.1.3-49160, arising from the Toolgate component. The flaw is caused by insufficient validation of user-supplied data, leading to an uncontrolled memory allocation and the ability to execute arbitrary code with hypervisor...
CVE-2021-34855
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...
CVE-2021-34855
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...
CVE-2021-34854
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
CVE-2021-34854
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
Design/Logic Flaw
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...
Design/Logic Flaw
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
Design/Logic Flaw
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-34857
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...
CVE-2021-34854
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 49160. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...
Parallels Desktop Toolgate Uninitialized Memory Information Leakage Vulnerability
A security vulnerability exists within Parallels Desktop Toolgate Uninitialized, which stems from the product's failure to properly initialize the memory of the Toolgate component. A local attacker could gain access to sensitive information through this vulnerability...
Parallels Desktop Stack Buffer Overflow Vulnerability
Parallels Desktop is a virtual machine software that runs on Mac computers. A stack buffer overflow vulnerability exists in the Toolgate component in Parallels Desktop version 16.1.0-48950. The vulnerability stems from not properly validating the length of user-supplied data before copying it to ...
Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability (CNVD-2021-34180)
Parallels Desktop is a virtual machine software that runs on Mac computers. A security vulnerability exists in the Toolgate component in Parallels Desktop version 15.1.4-47270. The vulnerability stems from failure to properly initialize memory before accessing it. A local attacker could exploit t...
CVE-2021-31423
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...
CVE-2021-31421
This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...