CVE-2025-6241 | Lakeside SyStrack prior 10.10.0.42 Environment Variable LsiAgent.exe SYSTEM PATH uncontrolled search path

Inserito da Angelo Barbosa | Lug 27, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Lakeside SyStrack. This issue affects some unknown processing of the file LsiAgent.exe of the component Environment Variable Handler. The manipulation of the argument SYSTEM PATH leads to uncontrolled search path.

The identification of this vulnerability is CVE-2025-6241. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-6241 | Lakeside SyStrack prior 10.10.0.42 Environment Variable LsiAgent.exe SYSTEM PATH uncontrolled search path

Post correlati

CVE-2024-46506 | NetAlertX up to 24.10.11 Setting settings.php savesettings missing authentication

CVE-2025-4900 | Campcodes Sales and Inventory System 1.0 /pages/payment.php cid sql injection

CVE-2024-5199 | Spotify Play Button Plugin up to 1.0 on WordPress Shortcode cross site scripting

CVE-2023-51479 | Abdul Hakeem Build App Online Plugin up to 1.0.19 on WordPress privileges management