Audit the directories housing nssm.exe and any scripts or binaries it calls.
Check service security descriptor:
The primary vulnerability is not always in NSSM's code itself, but in how it is installed and configured by third-party applications. Insecure Inherited Permissions (CVE-2024-51448) Recent disclosures for products like IBM Robotic Process Automation nssm224 privilege escalation updated
Q: How can I mitigate the NSSM224 privilege escalation vulnerability? A: To mitigate the NSSM224 privilege escalation vulnerability, update NSSM224 to the latest version, implement security controls, and use security software. Audit the directories housing nssm
Privilege Escalation consists of techniques that adversaries use to gain higher-level permissions on a system or network. MITRE ATT&CK® Improving IT hygiene using Wazuh update NSSM224 to the latest version