Privilege Escalation Vulnerability in Parallels Desktop by Parallels
CVE-2021-34987
8.2HIGH
What is CVE-2021-34987?
This vulnerability in Parallels Desktop 16.5.1 pertains to the HDAudio virtual device, where a flaw in the validation of user-supplied data length can be exploited by local attackers. By executing high-privileged code on the guest system, an attacker can manipulate the buffer, leading to privilege escalation and potential execution of arbitrary code within the hypervisor environment.
Affected Version(s)
Desktop 16.5.1 (49187)