Parallels

Parallels, known for virtualization and desktop software solutions, has a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges but requires no user interaction to exploit, with potential for complete compromise of confidentiality, integrity, and availability on the affected system. Security teams should monitor for unexpected privilege escalation or system compromise on machines running Parallels products, particularly those with untrusted local users, and prepare to apply patches by the June 25, 2026 vendor deadline.