Vulnerabilities > Parallels > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-29 | CVE-2021-31418 | Use of Uninitialized Resource vulnerability in Parallels Desktop 15.1.447270 This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-47270. | 6.5 |
| 2021-04-29 | CVE-2021-31417 | Use of Uninitialized Resource vulnerability in Parallels Desktop 15.1.447270 This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4-47270. | 6.5 |
| 2021-03-29 | CVE-2021-27244 | Out-of-bounds Read vulnerability in Parallels Desktop 16.0.1 This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.0.1-48919. | 6.5 |
| 2020-12-25 | CVE-2020-35710 | Information Exposure vulnerability in Parallels Remote Application Server 18.0 Parallels Remote Application Server (RAS) 18 allows remote attackers to discover an intranet IP address because submission of the login form (even with blank credentials) provides this address to the attacker's client for use as a "host" value. | 5.3 |
| 2020-08-25 | CVE-2020-17402 | Incorrect Permission Assignment for Critical Resource vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4 (47270). | 6.5 |
| 2020-08-25 | CVE-2020-17401 | Improper Validation of Array Index vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose sensitive informations on affected installations of Parallels Desktop 15.1.4. | 6.0 |
| 2020-08-25 | CVE-2020-17398 | Unspecified vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. | 6.5 |
| 2020-08-25 | CVE-2020-17394 | Improper Validation of Array Index vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 15.1.4. | 6.0 |
| 2020-08-25 | CVE-2020-17393 | Improper Input Validation vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. | 6.5 |
| 2020-08-25 | CVE-2020-17391 | Exposed Dangerous Method or Function vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. | 6.5 |