(Non-Sucking Service Manager) does not have a single, direct CVE for a "built-in" privilege escalation flaw, it is
Attackers typically target NSSM-managed services through the following methods: Unquoted Service Paths nssm-2.24 privilege escalation
The vulnerability in NSSM 2.24 subverts this logic not by breaking the Windows security model, but by mishandling how the service binary executes after installation. (Non-Sucking Service Manager) does not have a single,