Vulnerabilities > Parallels
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-21 | CVE-2024-6240 | Unspecified vulnerability in Parallels Desktop Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0. | 10.0 |
| 2024-06-20 | CVE-2024-6153 | Unspecified vulnerability in Parallels Desktop Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. | 7.8 |
| 2024-06-20 | CVE-2024-6154 | Out-of-bounds Write vulnerability in Parallels Desktop Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. | 6.7 |
| 2023-12-14 | CVE-2023-45894 | Unspecified vulnerability in Parallels Remote Application Server The Remote Application Server in Parallels RAS before 19.2.23975 does not segment virtualized applications from the server, which allows a remote attacker to achieve remote code execution via standard kiosk breakout techniques. | 10.0 |
| 2022-11-23 | CVE-2022-40870 | Improper Encoding or Escaping of Output vulnerability in Parallels Remote Application Server 18.0 The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. | 8.1 |
| 2022-07-18 | CVE-2022-34889 | Unspecified vulnerability in Parallels Desktop 17.1.1(51537) This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 17.1.1 (51537). | 8.2 |
| 2022-07-18 | CVE-2022-34890 | Unspecified vulnerability in Parallels Desktop 17.1.1(51537) This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 17.1.1 (51537). | 8.8 |
| 2022-07-18 | CVE-2022-34891 | Unspecified vulnerability in Parallels Desktop 17.1.1 This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. | 7.8 |
| 2022-07-18 | CVE-2022-34892 | Unspecified vulnerability in Parallels Desktop 17.1.1 This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. | 7.8 |
| 2022-07-18 | CVE-2022-34899 | Unspecified vulnerability in Parallels Access 6.5.4(39316) This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Access 6.5.4 (39316) Agent. | 7.8 |