{"id":64278,"date":"2025-06-03T16:31:48","date_gmt":"2025-06-03T13:01:48","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-31359-parallels-desktop-directory-traversal-vulnerability\/"},"modified":"2025-06-03T16:31:48","modified_gmt":"2025-06-03T13:01:48","slug":"cve-2025-31359-parallels-desktop-directory-traversal-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-31359-parallels-desktop-directory-traversal-vulnerability\/","title":{"rendered":"CVE-2025-31359 &#8211; Parallels Desktop Directory Traversal Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-31359<br \/>\n<br \/>\n<strong>Published : <\/strong> June 3, 2025, 10:15 a.m. | 2\u00a0hours, 14\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A directory traversal vulnerability exists in the PVMP package unpacking functionality of Parallels Desktop for Mac version 20.2.2 (55879). This vulnerability can be exploited by an attacker to write to arbitrary files, potentially leading to privilege escalation.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 8.8 | HIGH<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-31359 Published : June 3, 2025, 10:15 a.m. | 2\u00a0hours, 14\u00a0minutes ago Description : A directory traversal vulnerability exists in the PVMP package unpacking functionality of Parallels Desktop for Mac version 20.2.2 (55879). This vulnerability can be exploited by an attacker to write to arbitrary files, potentially leading to privilege escalation. Severity: &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-64278","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/64278","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=64278"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/64278\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=64278"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=64278"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=64278"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}