CVE-2024-52561 | THREATINT

Description

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is deleted, a root service verifies and modifies the ownership of the snapshot files. By using a symlink, an attacker can change the ownership of files owned by root to a lower-privilege user, potentially leading to privilege escalation.

PUBLISHED Reserved 2024-12-05 | Published 2025-06-03 | Updated 2025-06-03 | Assigner talos

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-708: Incorrect Ownership Assignment

Product status

version 20.1.1 (55740)

affected

Credits

Discovered by KPC of Cisco Talos.

References

www.talosintelligence.com/...ability_reports/TALOS-2024-2123

talosintelligence.com/vulnerability_reports/TALOS-2024-2123 exploit

talosintelligence.com/vulnerability_reports/TALOS-2024-2123

cve.org (CVE-2024-52561)

nvd.nist.gov (CVE-2024-52561)

Download JSON