CVE-2025-30074

Summary

Alludo Parallels Desktop before 19.4.2 and 20.x before 20.2.2 for macOS on Intel platforms allows privilege escalation to root via the VM creation routine.

Affected Software

VendorProductVersion RangeStatus
ParallelsParallels Desktop19.3.1 < 19.4.2affected
ParallelsParallels Desktop20.0.0 < 20.2.2affected

Weaknesses

  • CWE-863: CWE-863 Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References