Local Privilege Escalation in Parallels Access 6.5.4 by Parallels
CVE-2022-34899
7HIGH
What is CVE-2022-34899?
A vulnerability in Parallels Access 6.5.4 allows local attackers to escalate privileges. An attacker who can execute low-privileged code on the system can exploit the flaw in the Parallels service by creating a symbolic link. This manipulative action could enable the execution of arbitrary code within the root context, posing significant security risks. Immediate attention is recommended to mitigate potential exploits.
Affected Version(s)
Access 6.5.4 (39316)