: Use sc qc [ServiceName] to check for unquoted paths or insecure binary locations.
Version 2.24 has several documented stability and security-related bugs that were addressed in the 2.25 pre-release builds: nssm-2.24 privilege escalation
While is a legitimate tool used to manage Windows services, it is often central to privilege escalation attacks due to improper deployment permissions rather than a flaw in its own source code . : Use sc qc [ServiceName] to check for
or the binary it launches with a malicious executable. When the service restarts (or the system reboots), the malicious code runs with privileges. Notable Examples IBM Robotic Process Automation nssm-2.24 privilege escalation
This is the most common vulnerability associated with NSSM-2.24 deployments.