Microsoft AutoUpdate
by Microsoft
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-55317 | 0.00 | — | 0.00 | Sep 9, 2025 | Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-47968 | 0.00 | — | 0.00 | Jun 10, 2025 | Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-29801 | 0.00 | — | 0.01 | Apr 8, 2025 | Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-29800 | 0.00 | — | 0.01 | Apr 8, 2025 | Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-24036 | 0.00 | — | 0.00 | Feb 11, 2025 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2025-21360 | 0.00 | — | 0.00 | Jan 14, 2025 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2024-43492 | 0.00 | — | 0.00 | Sep 10, 2024 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2020-0984 | 0.00 | — | 0.01 | Apr 15, 2020 | An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before executing them, aka 'Microsoft (MAU) Office Elevation of Privilege Vulnerability'. |
- CVE-2025-55317Sep 9, 2025risk 0.00cvss —epss 0.00
Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-47968Jun 10, 2025risk 0.00cvss —epss 0.00
Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-29801Apr 8, 2025risk 0.00cvss —epss 0.01
Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-29800Apr 8, 2025risk 0.00cvss —epss 0.01
Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-24036Feb 11, 2025risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2025-21360Jan 14, 2025risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2024-43492Sep 10, 2024risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2020-0984Apr 15, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before executing them, aka 'Microsoft (MAU) Office Elevation of Privilege Vulnerability'.