CVE-2024-51448

IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.exe service. A subsequent service or server restart will then run that binary with administrator privilege.

CVSS v3 6.7 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.ibm.com/support/pages/node/7177586	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:robotic_process_automation::::::::
	cpe:2.3:a:ibm:robotic_process_automation::::::::

History

25 Mar 2025, 14:06

Type	Values Removed	Values Added
References	~~() https://www.ibm.com/support/pages/node/7177586 -~~	() https://www.ibm.com/support/pages/node/7177586 - Vendor Advisory
CWE		CWE-732
First Time		Ibm Ibm robotic Process Automation
CPE		cpe:2.3:a:ibm:robotic_process_automation::::::::
Summary		(es) IBM Robotic Process Automation 21.0.0 a 21.0.7.17 y 23.0.0 a 23.0.18 podrían permitir que un usuario local aumente sus privilegios. Todos los archivos de la instalación heredan los permisos de archivo del directorio principal y, por lo tanto, un usuario sin privilegios puede sustituir cualquier ejecutable por el servicio nssm.exe. Un reinicio posterior del servicio o del servidor ejecutará ese binario con privilegios de administrador.

18 Jan 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-18 15:15

Updated : 2025-03-25 14:06

NVD link : CVE-2024-51448

Mitre link : CVE-2024-51448

CVE.ORG link : CVE-2024-51448

JSON object : View

Products Affected

ibm

robotic_process_automation

CWE

CWE-277

Insecure Inherited Permissions

CWE-732

Incorrect Permission Assignment for Critical Resource

{"id": "CVE-2024-51448", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "psirt@us.ibm.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2025-01-18T15:15:08.183", "references": [{"url": "https://www.ibm.com/support/pages/node/7177586", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@us.ibm.com", "description": [{"lang": "en", "value": "CWE-277"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-732"}]}], "descriptions": [{"lang": "en", "value": "IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.exe service. A subsequent service or server restart will then run that binary with administrator privilege."}, {"lang": "es", "value": "IBM Robotic Process Automation 21.0.0 a 21.0.7.17 y 23.0.0 a 23.0.18 podr\u00edan permitir que un usuario local aumente sus privilegios. Todos los archivos de la instalaci\u00f3n heredan los permisos de archivo del directorio principal y, por lo tanto, un usuario sin privilegios puede sustituir cualquier ejecutable por el servicio nssm.exe. Un reinicio posterior del servicio o del servidor ejecutar\u00e1 ese binario con privilegios de administrador."}], "lastModified": "2025-03-25T14:06:48.877", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD5A94A8-24DB-4F6F-A629-031BD4BDB7F3", "versionEndIncluding": "21.0.7.17", "versionStartIncluding": "21.0.0"}, {"criteria": "cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4641E270-157D-4040-901F-8EC5BC13961C", "versionEndIncluding": "23.0.18", "versionStartIncluding": "23.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}

6.7 /10