Local Privilege Escalation in SysTrack from Lakeside Software
CVE-2025-6241
Currently unrated
What is CVE-2025-6241?
A vulnerability exists in the LsiAgent.exe component of SysTrack from Lakeside Software, where it attempts to load DLL files that are not part of the default installation. If a writable directory is included in the SYSTEM PATH environment variable, an attacker with local access can place a malicious DLL in that directory. This DLL will execute with elevated privileges, specifically under the NT AUTHORITY\SYSTEM context, when the service is started or restarted, leading to a significant security risk.