VYPR

AutoUpdate

by Microsoft

CVEs (8)

  • CVE-2025-55317HigSep 9, 2025
    risk 0.51cvss 7.8epss 0.00

    Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-47968HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.00

    Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29801HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29800HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-21360HigJan 14, 2025
    risk 0.51cvss 7.8epss 0.00

    Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

  • CVE-2024-43492HigSep 10, 2024
    risk 0.51cvss 7.8epss 0.00

    Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

  • CVE-2020-0984HigApr 15, 2020
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before executing them, aka 'Microsoft (MAU) Office Elevation of Privilege Vulnerability'.

  • CVE-2025-24036HigFeb 11, 2025
    risk 0.46cvss 7.0epss 0.00

    Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability