CVE-2025-6241 CVE-2025-6241

LsiAgent.exe, a component of SysTrack from Lakeside Software, attempts to load several DLL files which are not present in the default installation. If a user-writable directory is present in the SYSTEM PATH environment variable, the user can write a malicious DLL to that directory with arbitrary...

CVE-2025-6241 CVE-2025-6241

LsiAgent.exe, a component of SysTrack from Lakeside Software, attempts to load several DLL files which are not present in the default installation. If a user-writable directory is present in the SYSTEM PATH environment variable, the user can write a malicious DLL to that directory with arbitrary...

CVE-2025-6241

Summary: CVE-2025-6241 affects Lakeside Software SysTrack’s LsiAgent.exe, which loads DLLs not present in default installations. If a user-writable directory exists in the SYSTEM PATH, a malicious DLL named wfapi.dll could be written there and executed by LsiAgent.exe at startup or service restar...

PT-2025-30989

Name of the Vulnerable Software and Affected Versions: Lakeside SysTrack versions affected versions not specified Description: LsiAgent.exe, a component of SysTrack, attempts to load DLL files that are not part of the default installation. If a user-writable directory is included in the SYSTEM PA...

Lakeside Software SysTrack 安全漏洞

Lakeside Software SysTrack is an endpoint data monitoring software from Lakeside Software, USA. A security vulnerability exists in Lakeside Software SysTrack that stems from an attempt by the LsiAgent.exe component to load multiple DLL files that are not present in the default installation, which...

SysTrack LsiAgent.exe contains an improper DLL search order, allowing an attacker to execute arbitrary code and priv esc

Overview Lakeside Software, an IT digital employee experience platform, offers a product called SysTrack, intended for endpoint observability. This program uses an executable called LsiAgent.exe, which attempts to load various Dynamic Link Library DLL files when run. The program does not properly...

CVE-2023-6080

Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access...

CVE-2023-6080

Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access...

CVE-2023-6080

Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access...

CVE-2023-6080

CVE-2023-6080 affects Lakeside Software’s SysTrack LsiAgent Installer for Windows v10.7.8. The issue is a local privilege escalation in the installer that can give an attacker SYSTEM-level access, stemming from flaws in the MSI repair process. Remediation: Lakeside recommends updating to v11.0 to...

PT-2024-14876 · Lakeside · Systrack Lsiagent Installer

Name of the Vulnerable Software and Affected Versions: Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows Description: The issue is a local privilege escalation vulnerability that allows attackers to gain SYSTEM level access. This flaw is present in the SysTrack LsiAgent...

Lakeside SysTrack LsiAgent 安全漏洞

Lakeside SysTrack LsiAgent is an agent from Lakeside UK. A security vulnerability exists in Lakeside SysTrack LsiAgent version 10.7.8 that stems from the inclusion of a local elevation of privilege vulnerability that could allow an attacker to gain system-level access...