CVE-2025-30074
HIGHAlludo Parallels Desktop <19.4.2, <20.2.2 - Privilege Escalation
Title source: llmDescription
Alludo Parallels Desktop before 19.4.2 and 20.x before 20.2.2 for macOS on Intel platforms allows privilege escalation to root via the VM creation routine.
References (1)
Core 1
Core References
Various Sources
https://kb.parallels.com/en/130944
Scores
CVSS v3
7.8
EPSS
0.0012
EPSS Percentile
1.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-863
Status
published
Products (2)
Parallels/Parallels Desktop
19.3.1 - 19.4.2
Parallels/Parallels Desktop
20.0.0 - 20.2.2
Published
Mar 16, 2025
Tracked Since
Feb 18, 2026