Parallels Desktop Security Vulnerabilities and Issues — Parallels Desktop CVE List

Lucene search

ParallelsParallels Desktop

20 matches found

CVE•added 2007/05/02 5:19 p.m.•59 views

CVE-2007-2455

Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a d...

6.1CVSS6.4AI score0.00225EPSS

CVE•added 2021/03/29 9:15 p.m.•56 views

CVE-2021-27244

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exis...

6.5CVSS6.2AI score0.0009EPSS

CVE•added 2020/08/25 9:15 p.m.•50 views

CVE-2020-17398

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the prl_hype...

6.5CVSS6.1AI score0.0009EPSS

CVE•added 2020/08/25 9:15 p.m.•49 views

CVE-2020-17402

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4 (47270). An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists w...

6.5CVSS6.3AI score0.0006EPSS

CVE•added 2020/08/25 9:15 p.m.•46 views

CVE-2020-17401

This vulnerability allows local attackers to disclose sensitive informations on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists w...

6CVSS5.8AI score0.00087EPSS

CVE•added 2007/05/02 5:19 p.m.•44 views

CVE-2007-2454

Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.

6.8CVSS7.7AI score0.00191EPSS

CVE•added 2020/08/25 9:15 p.m.•44 views

CVE-2020-17393

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the pr...

6.5CVSS6.2AI score0.0009EPSS

CVE•added 2021/04/29 5:15 p.m.•44 views

CVE-2021-31432

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.5-47309. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exi...

6CVSS5.8AI score0.00087EPSS

CVE•added 2021/10/25 5:15 p.m.•44 views

CVE-2021-34855

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw ex...

6.5CVSS6.3AI score0.0009EPSS

CVE•added 2021/04/29 5:15 p.m.•42 views

CVE-2021-31417

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-47270. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exis...

6.5CVSS6.3AI score0.00081EPSS

CVE•added 2020/08/25 9:15 p.m.•41 views

CVE-2020-17391

6.5CVSS6.3AI score0.0009EPSS

CVE•added 2020/08/25 9:15 p.m.•40 views

CVE-2020-17394

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists wi...

6CVSS5.7AI score0.00087EPSS

CVE•added 2021/04/29 5:15 p.m.•39 views

CVE-2021-31423

6CVSS5.8AI score0.00078EPSS

CVE•added 2021/04/29 5:15 p.m.•38 views

CVE-2021-31431

6CVSS5.8AI score0.00078EPSS

CVE•added 2020/03/23 6:15 p.m.•37 views

CVE-2020-8876

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the IO...

6.5CVSS5.3AI score0.00094EPSS

CVE•added 2021/04/29 5:15 p.m.•37 views

CVE-2021-31419

6.5CVSS6.3AI score0.0009EPSS

CVE•added 2021/04/29 5:15 p.m.•34 views

CVE-2021-31421

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists with...

6CVSS6AI score0.00134EPSS

CVE•added 2021/04/29 5:15 p.m.•33 views

CVE-2021-31430

6CVSS5.8AI score0.00078EPSS

CVE•added 2021/04/29 5:15 p.m.•32 views

CVE-2021-31418

6.5CVSS6.3AI score0.0009EPSS

CVE•added 2020/03/23 6:15 p.m.•31 views

CVE-2020-8872

This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.1-47117. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exi...

6CVSS4.1AI score0.00095EPSS