: Vulnerable to LPE because standard users could substitute the service binary. Apache CouchDB
: A known advisory (ZSL-2017-5418) highlighted how NSSM 2.24 in this software suite allowed non-privileged users to execute arbitrary code by replacing binaries in writable paths. Key Technical Details Vulnerable Version NSSM 2.24 (often bundled with third-party software) Common Path nssm-2.24 privilege escalation
If you’re a security researcher testing NSSM 2.24 in a lab, review: : Vulnerable to LPE because standard users could