Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

238 matches found

Positive Technologies
Positive Technologiesadded 2025/09/16 12:0 a.m.1 views

PT-2025-37918

Name of the Vulnerable Software and Affected Versions: Sparkle versions prior to 2.7.2 Description: The Sparkle framework’s Autoupdate tool lacks authentication for connecting clients. This allows a local, unprivileged attacker to request the installation of a crafted malicious PKG file, leading ...

8.8CVSS6.6AI score0.00025EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/09/11 5:29 p.m.1 views

CVE-2025-55317

Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00135EPSS
Exploits0References1
NVD
NVDadded 2025/09/09 5:16 p.m.1 views

CVE-2025-55317

Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00135EPSS
Exploits0References1
OSV
OSVadded 2025/09/09 5:16 p.m.0 views

CVE-2025-55317

Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00135EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/09/09 5:1 p.m.1 views

CVE-2025-55317 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

7.8CVSS6.5AI score0.00135EPSS
Exploits0References1
CVE
CVEadded 2025/09/09 5:1 p.m.24 views

CVE-2025-55317

CVE-2025-55317 concerns Microsoft AutoUpdate (MAU) and its elevation of privilege via improper link resolution before file access ("link following"). Affected: MAU components on macOS; vulnerability allows an authorized local attacker to escalate privileges. Root cause: improper link resolution b...

7.8CVSS6.3AI score0.00135EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/09/09 5:1 p.m.5 views

CVE-2025-55317 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

7.8CVSS0.00135EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2025/09/09 7:0 a.m.109 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00135EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/09 12:0 a.m.0 views

Microsoft AutoUpdate for macOS < 4.80 Elevation of Privilege (September 2025)

The version of Microsoft AutoUpdate installed on the remote macOS ost is prior to 4.80. It is, therefore, affected by an elevation of privilege vulnerability: - Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate...

7.8CVSS5.5AI score0.00135EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/09/09 12:0 a.m.1 views

Microsoft AutoUpdate for Mac 后置链接漏洞

Microsoft AutoUpdate for Mac is a Microsoft product automatic update application for the Mac platform from Microsoft Corporation USA. Microsoft AutoUpdate for Mac suffers from a backlink vulnerability. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS6.5AI score0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.1 views

PT-2025-36896

Name of the Vulnerable Software and Affected Versions: Microsoft AutoUpdate affected versions not specified Description: An improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally. Recommendations: At the...

7.8CVSS6AI score0.00135EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2019-17561

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Apache NetBeans autoupdate system does not fully validate code signatures. An attacker could modify the downloaded nbm and include additional code. Apache...

7.5CVSS7.2AI score0.0073EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2025/07/04 12:0 a.m.115 views

📄 Microsoft AutoUpdate Privilege Escalation

Microsoft AutoUpdate MAU suffers from a privilege escalation vulnerability. Titles: CVE-2025-47968-Core-Logic Microsoft AutoUpdate MAU Elevation of Privilege Vulnerability Author: nu11secur1ty Date: 07/03/2025 Vendor: https://www.microsoft.com/en-us Software:...

7.8CVSS6.6AI score0.01068EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2025/06/19 6:15 p.m.1 views

CVE-2025-33117

IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 could allow a privileged user to modify configuration files that would allow the upload of a malicious autoupdate file to execute arbitrary commands...

9.1CVSS6AI score0.00271EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2025/06/19 6:15 p.m.1 views

CVE-2025-33117

IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12 could allow a privileged user to modify configuration files that would allow the upload of a malicious autoupdate file to execute arbitrary commands...

9.1CVSS6AI score
Exploits0References1
CVE
CVEadded 2025/06/19 5:16 p.m.23 views

CVE-2025-33117

CVE-2025-33117 affects IBM QRadar SIEM versions 7.5 through 7.5.0 Update Package 12. A privileged user could modify critical configuration files, enabling the upload of a malicious autoupdate file to execute arbitrary commands. This aligns with IBM’s bulletin noting high-severity impact and a fix...

9.1CVSS9.4AI score0.00271EPSS
Exploits0References1Affected Software1
CNVD
CNVDadded 2025/06/13 12:0 a.m.1 views

Microsoft AutoUpdate for Mac Elevation of Privilege Vulnerability

Microsoft AutoUpdate for Mac is a Microsoft product auto-update application for the Mac platform from Microsoft Corporation USA. Microsoft AutoUpdate for Mac suffers from an elevation of privilege vulnerability that can be exploited by an attacker to elevate privileges...

7.8CVSS7.1AI score0.01068EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/12 5:6 p.m.2 views

CVE-2025-47968

Improper input validation in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.01068EPSS
Exploits1References1
NVD
NVDadded 2025/06/10 5:24 p.m.5 views

CVE-2025-47968

Improper input validation in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS0.01068EPSS
Exploits1References1
OSV
OSVadded 2025/06/10 5:24 p.m.1 views

CVE-2025-47968

Improper input validation in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.01068EPSS
Exploits1References1
Rows per page
Query Builder