Local Privilege Escalation Vulnerability in Parallels Access by Parallels
CVE-2022-34901
7.8HIGH
What is CVE-2022-34901?
This vulnerability in Parallels Access 6.5.4 allows local attackers to escalate their privileges by exploiting a flaw within the Parallels Service. The service's execution of files from an unsecured location poses a risk, enabling an attacker who already possesses low-privileged access to run arbitrary code as the root user. This security issue underscores the importance of proper file handling practices and ensuring that services operate within secure boundaries.
Affected Version(s)
Access 6.5.4 (39316)