Fortra · Robot Schedule Enterprise Agent · CVE-2024-0259
**Name of the Vulnerable Software and Affected Versions**
Fortra's Robot Schedule Enterprise Agent for Windows versions prior to 3.04
**Description**
The issue allows a low-privileged user to overwrite the service executable. When the service is restarted, the replaced binary runs with local system privileges, enabling a low-privileged user to gain elevated privileges.
**Recommendations**
For versions prior to 3.04, update to version 3.04 or later to resolve the issue. As a temporary workaround, consider restricting access to the service executable to prevent low-privileged users from overwriting it.