2 matches found
Design/Logic Flaw
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.1-47117. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw...
CVE-2020-8872
CVE-2020-8872 affects Parallels Desktop (xHCI component). The flaw is a boundary check failure that can read past the end of an allocated buffer, enabling local disclosure of sensitive information. The vulnerability requires local privileged code execution on the guest to exploit, and the impact ...