Critical Vulnerability Discovered in Lakeside Software's SysTrack
/ 1 min read
🧩 Mandiant uncovers critical privilege escalation vulnerability in Lakeside Software’s SysTrack. Mandiant identified CVE-2023-6080, a local privilege escalation vulnerability in the SysTrack Agent version 10.7.8, which allows low-privilege users to execute arbitrary code through the MSI repair action. The flaw stems from insecure coding practices, enabling attackers to exploit predictable filename generation and race conditions during the repair process. Mandiant responsibly disclosed the issue to Lakeside Software, which has since addressed it in version 11.0. The findings highlight the importance of secure coding practices and proper folder permissions to mitigate risks associated with third-party Windows installers. Organizations are advised to audit their software for similar vulnerabilities to enhance endpoint security.
