Syh4Ck

**Name of the Vulnerable Software and Affected Versions** Rapid Software LLC Rapid SCADA version 5.8.0 **Description** The issue allows for local privilege escalation due to a vulnerability in the ScadaAgentSvc.exe executable file. An attacker can gain admin privileges by placing a malicious .exe file in the application, renaming it ScadaAgentSvc.exe, and executing it as NT AUTHORITYSYSTEM in a Windows operating system. This could enable an attacker to plant a reverse shell from a low-privileged user account, gaining full system access to the remote PC upon restarting the computer. **Recommendations** For Rapid Software LLC Rapid SCADA version 5.8.0, consider removing or restricting access to the ScadaAgentSvc.exe executable file until a patch is available. As a temporary workaround, monitor system restarts and manually verify the integrity of the ScadaAgentSvc.exe file to prevent malicious execution.