What the vulnerability does
01Description
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
CVE-2024-43492
HIGH
CVE-2024-43492: Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
CVSS base score
7.8/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
September 10, 2024
CVE published
December 31, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2021-35245 Broken Access Control Vulnerability for SolarWinds Serv-U
CVE-2022-23995
CVE-2024-29054 Microsoft Defender for IoT Elevation of Privilege Vulnerability
CVE-2026-3429 Org.keycloak.services.resources.account: improper access control leading to mfa deletion and account takeover in keycloak account rest api
CVE-2026-40889 Frappe HR has Improper Access Control on Files
