CVE-2025-29801: Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Overview

Severity

High (CVSS 7.8)

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Category

Elevation of Privilege

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2025-Apr

Released

2025-04-08

EPSS Score

0.52% (percentile: 66.9%)

Description

Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

FAQ

How could an attacker exploit this vulnerability? To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system. Is the Preview Pane an attack vector for this vulnerability? No, the Preview Pane is not an attack vector. What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully exploited this vulnerability could gain ROOT privileges.

Affected Products (1)

Microsoft Office

• Microsoft AutoUpdate for Mac

Security Updates (1)

• MAU

Acknowledgments

Anonymous

Revision History

• 2025-04-08: Information published.