Vulnerabilities > Parallels > Parallels > High

DATE CVE VULNERABILITY TITLE RISK
2022-01-25 CVE-2021-34867 Uncontrolled Memory Allocation vulnerability in Parallels 16.1.349160
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160.
local
low complexity
parallels CWE-789
8.2
8.2
2022-01-25 CVE-2021-34868 Uncontrolled Memory Allocation vulnerability in Parallels 16.1.349160
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160.
local
low complexity
parallels CWE-789
8.8
8.8
2022-01-25 CVE-2021-34869 Uncontrolled Memory Allocation vulnerability in Parallels 16.1.349160
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3-49160.
local
low complexity
parallels CWE-789
8.8
8.8
2020-01-21 CVE-2020-7213 Cleartext Storage of Sensitive Information vulnerability in Parallels 13
Parallels 13 uses cleartext HTTP as part of the update process, allowing man-in-the-middle attacks.
network
high complexity
parallels CWE-312
7.5
7.5