Creative
Products
3- 8 CVEs
- 1 CVE
- 1 CVE
Recent CVEs
9| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2008-0955 | 0.06 | — | 0.41 | May 29, 2008 | Stack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value. | |||
| CVE-2025-55317 | 0.00 | — | 0.00 | Sep 9, 2025 | Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-47968 | 0.00 | — | 0.00 | Jun 10, 2025 | Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-29801 | 0.00 | — | 0.01 | Apr 8, 2025 | Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-29800 | 0.00 | — | 0.01 | Apr 8, 2025 | Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-24036 | 0.00 | — | 0.00 | Feb 11, 2025 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2025-21360 | 0.00 | — | 0.00 | Jan 14, 2025 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2024-43492 | 0.00 | — | 0.00 | Sep 10, 2024 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | |||
| CVE-2010-0990 | 0.00 | — | 0.05 | Jun 15, 2010 | Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method. |
- CVE-2008-0955May 29, 2008risk 0.06cvss —epss 0.41
Stack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value.
- CVE-2025-55317Sep 9, 2025risk 0.00cvss —epss 0.00
Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-47968Jun 10, 2025risk 0.00cvss —epss 0.00
Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-29801Apr 8, 2025risk 0.00cvss —epss 0.01
Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-29800Apr 8, 2025risk 0.00cvss —epss 0.01
Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-24036Feb 11, 2025risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2025-21360Jan 14, 2025risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2024-43492Sep 10, 2024risk 0.00cvss —epss 0.00
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
- CVE-2010-0990Jun 15, 2010risk 0.00cvss —epss 0.05
Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method.