IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.exe service. A subsequent service or server restart will then run that binary with administrator privilege.
A product defines a set of insecure permissions that are inherited by objects that are created by the program.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Robotic_process_automation | Ibm | 21.0.0 (including) | 21.0.7.17 (including) |
Robotic_process_automation | Ibm | 23.0.0 (including) | 23.0.18 (including) |