Browse all 80 CVE security advisories affecting Parallels. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Parallels Desktop and Server provide virtualization solutions for macOS and Windows, enabling users to run multiple operating systems simultaneously on a single host. With eighty recorded Common Vulnerabilities and Exposures, the software has historically been susceptible to remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from improper input validation within the virtual machine communication channels or hypervisor components, allowing attackers to potentially escape the sandbox environment or execute arbitrary code with elevated privileges. While no catastrophic, widespread breaches have defined its public history, the high volume of CVEs indicates persistent security challenges in its core architecture. Users are advised to maintain strict patch management protocols to mitigate risks associated with these known defects, ensuring that the virtualization layer remains isolated from potential host compromise.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-17392 | Corel Parallels Desktop 安全漏洞 — DesktopCWE-822 | 8.8 | - | 2020-08-25 |
| CVE-2020-17390 | Corel Parallels Desktop 缓冲区错误漏洞 — DesktopCWE-125 | 8.8 | - | 2020-08-25 |
| CVE-2020-8876 | Corel Parallels Desktop IOCTL handler 缓冲区错误漏洞 — DesktopCWE-129 | 6.5 | - | 2020-03-23 |
| CVE-2020-8873 | Corel Parallels Desktop xHCI组件竞争条件问题漏洞 — DesktopCWE-367 | 8.2 | - | 2020-03-23 |
| CVE-2020-8874 | Corel Parallels Desktop xHCI组件输入验证错误漏洞 — DesktopCWE-190 | 8.2 | - | 2020-03-23 |
| CVE-2020-8875 | Corel Parallels Desktop IOCTL handler 缓冲区错误漏洞 — DesktopCWE-129 | 8.8 | - | 2020-03-23 |
| CVE-2020-8871 | Corel Parallels Desktop VGA虚拟设备缓冲区错误漏洞 — DesktopCWE-787 | 8.2 | - | 2020-03-23 |
| CVE-2020-8872 | Corel Parallels Desktop xHCI组件缓冲区错误漏洞 — DesktopCWE-125 | 6.0 | - | 2020-03-23 |
| CVE-2019-17148 | Corel Parallels Desktop 命令注入漏洞 — DesktopCWE-77 | 7.8 | - | 2020-01-07 |
This page lists every published CVE security advisory associated with Parallels. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.