Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
parallels vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2020-8871
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop 15.1.0-47107 . An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The sp...
Parallels Parallels Desktop
1 Github repository
7.5
CVSSv3
CVE-2020-7213
Parallels 13 uses cleartext HTTP as part of the update process, allowing man-in-the-middle attacks. Users of out-of-date versions are presented with a pop-up window for a parallels_updates.xml file on the http://update.parallels.com web site.
Parallels Parallels 13
NA
CVE-2007-2454
Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.
Parallels Parallels Desktop
NA
CVE-2007-2455
Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by usin...
Parallels Parallels Desktop
7.8
CVSSv3
CVE-2022-34891
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Th...
Parallels Parallels Desktop 17.1.1
8.8
CVSSv3
CVE-2021-27242
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The spec...
Parallels Parallels Desktop 16.0.1
8.8
CVSSv3
CVE-2021-27243
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The spec...
Parallels Parallels Desktop 16.0.1
7.8
CVSSv3
CVE-2021-34986
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop 16.5.0 (49183). An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific...
Parallels Parallels Desktop 16.5.0
7.8
CVSSv3
CVE-2022-34892
This vulnerability allows local malicious users to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Th...
Parallels Parallels Desktop 17.1.1
6.5
CVSSv3
CVE-2021-34855
This vulnerability allows local malicious users to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerabil...
Parallels Parallels Desktop 16.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »