The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.