Privilege Escalation Vulnerability in Microsoft AutoUpdate by Microsoft
CVE-2025-29800

7.8HIGH

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
8 April 2025

What is CVE-2025-29800?

A vulnerability in Microsoft AutoUpdate (MAU) permits an authorized user to exploit improper privilege management, enabling them to gain elevated access to system resources. This flaw poses a security risk, as it can be leveraged to execute unauthorized actions on the affected system.

Affected Version(s)

Microsoft AutoUpdate for Mac Unknown 0 < 4.78

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.