EUVD-2025-24230

Malicious code in bioql PyPI...

CVE-2025-41686

A low-privileged local attacker can exploit improper permissions on nssm.exe to escalate their privileges and gain administrative access...

CVE-2025-41686 Improper File Permissions Allow Local Privilege Escalation

A low-privileged local attacker can exploit improper permissions on nssm.exe to escalate their privileges and gain administrative access...

PHOENIX CONTACT DaUM 访问控制错误漏洞

Phoenix Contact DaUM is a device management software from Phoenix Contact, Germany. An access control error vulnerability exists in PHOENIX CONTACT DaUM that stems from improper permissions on nssm.exe, which could lead to elevated privileges...

CVE-2024-51448

IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.ex...

PT-2024-10276 · Ibm · Ibm Robotic Process Automation

Name of the Vulnerable Software and Affected Versions: IBM Robotic Process Automation versions 21.0.0 through 21.0.7.17 IBM Robotic Process Automation versions 23.0.0 through 23.0.18 Description: The issue is related to errors in inherited permissions. It could allow a local user to escalate thei...