CVE-2025-47968 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

CVE-2025-47968

CVE-2025-47968 is a local privilege-escalation vulnerability in Microsoft AutoUpdate (MAU) due to improper input validation. Affected product: MAU (Mac). The CVSS v3.1 metrics indicate Local attack vector, Low attack complexity, Low privileges required, but High impact on confidentiality, integri...

CVE-2025-47968 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

Microsoft AutoUpdate for Mac 输入验证错误漏洞

Microsoft AutoUpdate for Mac is a Microsoft product auto-update application for the Mac platform from Microsoft Corporation USA. Microsoft AutoUpdate for Mac suffers from an elevation of privilege vulnerability that can be exploited by an attacker to elevate privileges...

PT-2025-24881

Name of the Vulnerable Software and Affected Versions Microsoft AutoUpdate affected versions not specified Description The issue is related to improper input validation, which allows an authorized attacker to elevate privileges locally. There is no information provided about the estimated number ...

KLA84759 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Word can be...

CVE-2020-0984

An elevation of privilege vulnerability exists when the Microsoft AutoUpdate MAU application for Mac improperly validates updates before executing them, aka 'Microsoft MAU Office Elevation of Privilege Vulnerability'...

CVE-2019-17560

The "Apache NetBeans" autoupdate system does not validate SSL certificates and hostnames for https based downloads. This allows an attacker to intercept downloads of autoupdates and modify the download, potentially injecting malicious code. “Apache NetBeans" versions up to and including 11.2 are...

CVE-2025-29801

Incorrect default permissions in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29800

Improper privilege management in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29801

Incorrect default permissions in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29800

Improper privilege management in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29801

Incorrect default permissions in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29800

Improper privilege management in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

CVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

CVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

CVE-2025-29801

CVE-2025-29801 affects Microsoft AutoUpdate (MAU) on macOS. The issue stems from incorrect default permissions, enabling an authenticated local attacker to elevate privileges. Public details in the provided sources confirm MAU is the affected component and describe local privilege escalation, but...

CVE-2025-29800 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

CVE-2025-29800 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

CVE-2025-29800

CVE-2025-29800 affects Microsoft AutoUpdate (MAU), with an improper privilege management flaw that allows an authorized local attacker to elevate privileges. The CVSSv3.1 base score is 7.8 (HIGH), with local attack vector and low attack complexity and low privileges required; impact to confidenti...