A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is deleted, a root service verifies and modifies the ownership of the snapshot files. By using a symlink, an attacker can change the ownership of files owned by root to a lower-privilege user, potentially leading to privilege escalation.
References
Link | Resource |
---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123 | Exploit Third Party Advisory |
https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2123 | Exploit Third Party Advisory |
https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123 | Exploit Third Party Advisory |
Configurations
History
02 Jul 2025, 14:53
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:parallels:parallels_desktop:20.1.1_\(55740\):*:*:*:*:macos:*:* | |
References | () https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123 - Exploit, Third Party Advisory | |
References | () https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2123 - Exploit, Third Party Advisory | |
CWE | CWE-59 | |
First Time |
Parallels parallels Desktop
Parallels |
03 Jun 2025, 14:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
References | () https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123 - |
03 Jun 2025, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Jun 2025, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-03 10:15
Updated : 2025-07-02 14:53
NVD link : CVE-2024-52561
Mitre link : CVE-2024-52561
CVE.ORG link : CVE-2024-52561
JSON object : View
Products Affected
parallels
- parallels_desktop