CVE-2024-0259
Privilege Escalation in Robot Schedule Enterprise Agent for Windows prior to version 3.04
Severity Score
7.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to privilege escalation. A low-privileged user can overwrite the service executable. When the service is restarted, the replaced binary runs with local system privileges, allowing a low-privileged user to gain elevated privileges.
El Robot Schedule Enterprise Agent de Fortra para Windows anterior a la versiĆ³n 3.04 es susceptible a una escalada de privilegios. Un usuario con pocos privilegios puede sobrescribir el ejecutable del servicio. Cuando se reinicia el servicio, el binario reemplazado se ejecuta con privilegios del sistema local, lo que permite que un usuario con pocos privilegios obtenga permisos elevados.
*Credits:
Travis Dotseth, Prime Therapeutics
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-01-05 CVE Reserved
- 2024-03-28 CVE Published
- 2024-03-29 EPSS Updated
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-276: Incorrect Default Permissions
CAPEC
- CAPEC-233: Privilege Escalation
References (2)
| URL | Tag | Source |
|---|---|---|
| https://hstechdocs.helpsystems.com/releasenotes/Content/_ProductPages/Robot/RobotScheduleEnterprise.htm | ||
| https://www.fortra.com/security/advisory/fi-2024-005 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Fortra Search vendor "Fortra" | Robot Schedule Enterprise Agent Search vendor "Fortra" for product "Robot Schedule Enterprise Agent" | >= 2.0 < 3.04 Search vendor "Fortra" for product "Robot Schedule Enterprise Agent" and version " >= 2.0 < 3.04" | en |
Affected
| ||||||