Every CVE whose affected-product data names Microsoft Autoupdate, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-55317 — CVSS 7.8 (high): Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate…
CVE-2020-0984 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before…
CVE-2025-29800 — CVSS 7.8 (high): Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
CVE-2025-29801 — CVSS 7.8 (high): Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
CVE-2025-47968 — CVSS 7.8 (high): Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.