Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Parallels — Vulnerabilities & Security Advisories 80

Browse all 80 CVE security advisories affecting Parallels. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Parallels Desktop and Server provide virtualization solutions for macOS and Windows, enabling users to run multiple operating systems simultaneously on a single host. With eighty recorded Common Vulnerabilities and Exposures, the software has historically been susceptible to remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from improper input validation within the virtual machine communication channels or hypervisor components, allowing attackers to potentially escape the sandbox environment or execute arbitrary code with elevated privileges. While no catastrophic, widespread breaches have defined its public history, the high volume of CVEs indicates persistent security challenges in its core architecture. Users are advised to maintain strict patch management protocols to mitigate risks associated with these known defects, ensuring that the virtualization layer remains isolated from potential host compromise.

Top products by Parallels: Desktop Access Parallels Desktop for Mac Parallels Desktop Parallels Remote Application Server (Client)
CVE IDTitleCVSSSeverityPublished
CVE-2024-52561 Parallels Desktop 安全漏洞 — Parallels Desktop for MacCWE-708 7.8 High2025-06-03
CVE-2024-54189 Parallels Desktop 安全漏洞 — Parallels Desktop for MacCWE-62 7.8 High2025-06-03
CVE-2024-36486 Parallels Desktop 安全漏洞 — Parallels Desktop for MacCWE-62 7.8 High2025-06-03
CVE-2025-31359 Parallels Desktop 安全漏洞 — Parallels Desktop for MacCWE-22 8.8 High2025-06-03
CVE-2025-30074 Parallels Desktop 安全漏洞 — Parallels DesktopCWE-863 7.8 High2025-03-16
CVE-2025-0413 Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability — DesktopCWE-59 7.8 -2025-02-04
CVE-2024-6240 Improper privilege management vulnerability in Parallels Desktop — Parallels DesktopCWE-269 7.7 High2024-06-21
CVE-2024-6154 Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability — DesktopCWE-122 8.2AIHighAI2024-06-20
CVE-2024-6153 Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability — DesktopCWE-693 7.1AIHighAI2024-06-20
CVE-2023-50228 Parallels Desktop Updater Improper Verification of Cryptographic Signature Local Privilege Escalation Vulnerability — DesktopCWE-347 7.8 -2024-05-03
CVE-2023-50227 Parallels Desktop virtio-gpu Out-Of-Bounds Write Remote Code Execution Vulnerability — DesktopCWE-787 8.6 -2024-05-03
CVE-2023-50226 Parallels Desktop Updater Link Following Local Privilege Escalation Vulnerability — DesktopCWE-59 7.8 -2024-05-03
CVE-2023-27328 Parallels Desktop Toolgate XML Injection Local Privilege Escalation Vulnerability — DesktopCWE-91 8.8 -2024-05-03
CVE-2023-27327 Parallels Desktop Toolgate Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability — DesktopCWE-367 7.5 -2024-05-03
CVE-2023-27326 Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability — DesktopCWE-22 8.2 -2024-05-03
CVE-2023-27325 Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability — DesktopCWE-665 7.8 -2024-05-03
CVE-2023-27324 Parallels Desktop Updater Improper Initialization Local Privilege Escalation Vulnerability — DesktopCWE-665 7.8 -2024-05-03
CVE-2023-27323 Parallels Desktop Updater Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability — DesktopCWE-367 7.0AIHighAI2024-05-03
CVE-2023-27322 Parallels Desktop Service Improper Initialization Local Privilege Escalation Vulnerability — DesktopCWE-665 7.8AIHighAI2024-05-03
CVE-2022-34902 Parallels Access 代码问题漏洞 — AccessCWE-427 7.8 -2022-07-18
CVE-2022-34901 Parallels Access 代码问题漏洞 — AccessCWE-427 7.8 -2022-07-18
CVE-2022-34900 Parallels Access 代码问题漏洞 — AccessCWE-427 7.8 -2022-07-18
CVE-2022-34899 Parallels Access 安全漏洞 — AccessCWE-367 7.8 -2022-07-18
CVE-2022-34892 Corel Parallels Desktop 竞争条件问题漏洞 — DesktopCWE-362 7.8 -2022-07-18
CVE-2022-34891 Corel Parallels Desktop 安全漏洞 — DesktopCWE-732 7.8 -2022-07-15
CVE-2022-34890 Corel Parallels Desktop 安全漏洞 — DesktopCWE-822 6.5 -2022-07-15
CVE-2022-34889 Corel Parallels Desktop 缓冲区错误漏洞 — DesktopCWE-125 8.2 -2022-07-15
CVE-2021-34987 Corel Parallels Desktop 权限许可和访问控制问题漏洞 — DesktopCWE-120 8.2 -2022-07-15
CVE-2021-34986 Corel Parallels Desktop 安全漏洞 — DesktopCWE-367 7.8 -2022-07-15
CVE-2021-34869 Corel Parallels Desktop 访问控制错误漏洞 — DesktopCWE-789 8.8 -2022-01-25

This page lists every published CVE security advisory associated with Parallels. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.