CNNVD-202507-3401 Information

Jul 27, 2025 cve

CNNVD ID

CNNVD-202507-3401

CVE-2025-6241

  • CNNVD Published: 2025-07-27

Description (Chinese)

Lakeside Software SysTrack是美国Lakeside Software公司的一个端点数据监控软件。 Lakeside Software SysTrack存在安全漏洞,该漏洞源于LsiAgent.exe组件尝试加载多个默认安装中不存在的DLL文件,可能导致本地权限提升。

Description (English)

Lakeside Software SysTrack is an end-point data monitoring software for the United States company Lakeside Software. There is a security loophole in Lakeside Software SysTrack, which originates from the LsiAgent.exe component ’ s attempt to load a DLL file that does not exist in multiple default installations, which may lead to an increase in local privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Lakeside Software

Published

2025-07-27

Last Modified

2026-02-24

References

https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/10_10_0%20Hotfix%20Agent%20Release%20Notes%20On%20Premises.htm?tocpath=Release%20Notes%7CAgent%7C_____13 https://access.redhat.com/security/cve/cve-2025-6241

Share on: