Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data into another Guests virtualised GPU memory.
The product does not properly manage privileges while it is switching between different contexts that have different privileges or spheres of control.