Vulnerabilities > Parallels > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-06-21 CVE-2024-6240 Improper Privilege Management vulnerability in Parallels Desktop
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0.
network
low complexity
parallels CWE-269
critical
10.0
2023-12-14 CVE-2023-45894 Unspecified vulnerability in Parallels Remote Application Server
The Remote Application Server in Parallels RAS before 19.2.23975 does not segment virtualized applications from the server, which allows a remote attacker to achieve remote code execution via standard kiosk breakout techniques.
network
low complexity
parallels
critical
10.0
2020-07-24 CVE-2020-15860 Unspecified vulnerability in Parallels Remote Application Server 17.1.1
Parallels Remote Application Server (RAS) 17.1.1 has a Business Logic Error causing remote code execution.
network
low complexity
parallels
critical
9.9