threat
engine
.sh
Back
·
··:··
Home
/
Product
/
parallels desktop
Product
parallels desktop
74 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-31359
all versions
A directory traversal vulnerability exists in the PVMP package unpacking functionality of Parallels Desktop for Mac version 20.2.2
8.8
HIGH
CVE-2024-54189
all versions
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740
7.8
HIGH
CVE-2024-52561
all versions
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740
7.8
HIGH
CVE-2024-36486
all versions
A privilege escalation vulnerability exists in the virtual machine archive restoration functionality of Parallels Desktop for Mac
7.8
HIGH
CVE-2024-6240
< 19.3.0
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0. An attacker
7.7
HIGH
CVE-2024-6154
< 18.1.0
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local at
6.7
MEDIUM
CVE-2024-6153
< 18.1.0
Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. This vulnerability allows local attackers
7.8
HIGH
CVE-2023-50228
< 19.1.0_\(54729\)
Parallels Desktop Updater Improper Verification of Cryptographic Signature Local Privilege Escalation Vulnerability. This vulnerab
7.8
HIGH
CVE-2023-50227
< 19.1.0_\(54729\)
Parallels Desktop virtio-gpu Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers t
8.3
HIGH
CVE-2023-50226
< 17.1.7_\(51588\)
Parallels Desktop Updater Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to es
7.8
HIGH
CVE-2023-27328
< 18.1.1_\(53328\)
Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to es
7.8
HIGH
CVE-2023-27327
< 18.1.1_\(53328\)
Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local att
7.5
HIGH
CVE-2023-27326
< 18.1.1_\(53328\)
Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers
8.2
HIGH
CVE-2023-27325
< 18.1.0_\(53311\)
Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attack
7.8
HIGH
CVE-2023-27324
< 18.1.0_\(53311\)
Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attack
7.8
HIGH
CVE-2023-27323
< 18.1.0_\(53311\)
Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability. This vulnerability allows local atta
7.8
HIGH
CVE-2023-27322
< 18.1.0_\(53311\)
Parallels Desktop Service Improper Initialization Local Privilege Escalation Vulnerability. This vulnerability allows local attack
7.8
HIGH
CVE-2022-34892
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop
7.8
HIGH
CVE-2022-34891
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop
7.8
HIGH
CVE-2022-34890
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 17.1.1
8.8
HIGH
CVE-2022-34889
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 17.1.1 (51537). An
8.2
HIGH
CVE-2021-34987
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.5.1 (49187). An
8.2
HIGH
CVE-2021-34986
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.5.0 (49183). An
7.8
HIGH
CVE-2021-34864
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An
8.8
HIGH
CVE-2021-34857
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An
8.8
HIGH
CVE-2021-34856
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An
8.8
HIGH
CVE-2021-34855
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3
6.5
MEDIUM
CVE-2021-34854
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An
7.8
HIGH
CVE-2021-31432
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-
6.0
MEDIUM
CVE-2021-31431
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-
6.0
MEDIUM
CVE-2021-31430
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-
6.0
MEDIUM
CVE-2021-31429
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An a
8.2
HIGH
CVE-2021-31428
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An a
8.2
HIGH
CVE-2021-31427
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-
5.6
MEDIUM
CVE-2021-31426
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.2-49151. An a
8.8
HIGH
CVE-2021-31425
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.2-49151. An a
8.8
HIGH
CVE-2021-31424
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.5-47309. An a
8.8
HIGH
CVE-2021-31423
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-
6.0
MEDIUM
CVE-2021-31422
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.1-49141. An a
7.5
HIGH
CVE-2021-31421
all versions
This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. A
6.0
MEDIUM
CVE-2021-31420
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.0-48950. An a
8.8
HIGH
CVE-2021-31419
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-
6.5
MEDIUM
CVE-2021-31418
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-
6.5
MEDIUM
CVE-2021-31417
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-
6.5
MEDIUM
CVE-2021-27278
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.1-49141. An a
8.2
HIGH
CVE-2021-27260
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-
3.2
LOW
CVE-2021-27259
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An a
7.8
HIGH
CVE-2021-27244
all versions
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-
6.5
MEDIUM
CVE-2021-27243
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An a
8.8
HIGH
CVE-2021-27242
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An a
8.8
HIGH
CVE-2020-17402
< 16.0.0
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4
6.5
MEDIUM
CVE-2020-17401
< 16.0.0
This vulnerability allows local attackers to disclose sensitive informations on affected installations of Parallels Desktop 15.1.4
6.0
MEDIUM
CVE-2020-17400
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacke
8.8
HIGH
CVE-2020-17399
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacke
8.8
HIGH
CVE-2020-17398
< 16.0.0
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attack
6.5
MEDIUM
CVE-2020-17397
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacke
8.2
HIGH
CVE-2020-17396
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacke
8.8
HIGH
CVE-2020-17395
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.4. An attacke
8.2
HIGH
CVE-2020-17394
< 16.0.0
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4.
6.0
MEDIUM
CVE-2020-17393
< 15.1.4
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An
6.5
MEDIUM
CVE-2020-17392
< 16.0.0
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.3-47255. An a
8.8
HIGH
CVE-2020-17391
< 16.0.0
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An
6.5
MEDIUM
CVE-2020-17390
< 15.1.4
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An a
8.8
HIGH
CVE-2020-8876
< 15.1.3
This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.2-47123. An
5.5
MEDIUM
CVE-2020-8875
< 15.1.3
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An a
8.8
HIGH
CVE-2020-8874
< 15.1.3
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An a
6.7
MEDIUM
CVE-2020-8873
< 15.1.3
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An a
6.7
MEDIUM
CVE-2020-8872
< 15.1.3
This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.1-
4.4
MEDIUM
CVE-2020-8871
< 15.1.3
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.0-47107 . An
6.7
MEDIUM
CVE-2019-17148
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop
7.8
HIGH
CVE-2007-2455
all versions
Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrate
CVE-2007-2454
all versions
Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to t
CVE-2007-1222
all versions
Parallels Desktop for Mac before 20070216 implements Drag and Drop by sharing the entire host filesystem as the .psf share, which
CVE-2006-5817
all versions
prl_dhcpd in Parallels Desktop for Mac Build 1940 uses insecure permissions (0666) for /Library/Parallels/.dhcpd_configuration, wh
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin