Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Rapid Software LLC Rapid SCADA 5.8.0 is affected by a local privilege escalation vulnerability in the ScadaAgentSvc.exe executable file. An attacker can obtain admin privileges by placing a malicious .exe file in the application and renaming it ScadaAgentSvc.exe, which would result in executing the binary as NT AUTHORITY\SYSTEM in a Windows operating system. For example, an attacker can plant a reverse shell from a low privileged user account and by restarting the computer, the malicious service will be started as NT AUTHORITY\SYSTEM by giving the attacker full system access to the remote PC.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Rapid Software Rapid SCADA 代码问题漏洞
Vulnerability Description
Rapid Software Rapid SCADA 5.8.0版本中的ScadaAgentSvc.exe可执行文件存在安全漏洞。攻击者可恶意的.exe文件放置在应用程序并将名称修改为ScadaAgentSvc.exe利用该漏洞获取管理权限。
CVSS Information
N/A
Vulnerability Type
N/A