{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2026-35099", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "state": "PUBLISHED", "assignerShortName": "mitre", "dateReserved": "2026-04-01T15:39:51.020Z", "datePublished": "2026-04-01T15:39:51.438Z", "dateUpdated": "2026-04-01T20:11:43.803Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "SysTrack Agent", "vendor": "Lakeside Software", "versions": [{"lessThan": "11.2.1.28", "status": "affected", "version": "11", "versionType": "custom"}, {"lessThan": "11.3.0.38", "status": "affected", "version": "11.3", "versionType": "custom"}, {"lessThan": "11.4.0.24", "status": "affected", "version": "11.4", "versionType": "custom"}, {"lessThan": "11.5.0.15", "status": "affected", "version": "11.5", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Lakeside SysTrack Agent 11 before 11.5.0.15 has a race condition with resultant local privilege escalation to SYSTEM. The fixed versions are 11.2.1.28, 11.3.0.38, 11.4.0.24, and 11.5.0.15."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-362", "description": "CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T20:11:43.803Z"}, "references": [{"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11.2.1.28%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____8"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_3_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____6"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_4_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____4"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_5_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____2"}], "x_generator": {"engine": "CVE-Request-form 0.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-01T16:12:07.600059Z", "id": "CVE-2026-35099", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T16:14:07.020Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-35099", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-01T16:12:07.600059Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T16:12:15.410Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Lakeside Software", "product": "SysTrack Agent", "versions": [{"status": "affected", "version": "11", "lessThan": "11.2.1.28", "versionType": "custom"}, {"status": "affected", "version": "11.3", "lessThan": "11.3.0.38", "versionType": "custom"}, {"status": "affected", "version": "11.4", "lessThan": "11.4.0.24", "versionType": "custom"}, {"status": "affected", "version": "11.5", "lessThan": "11.5.0.15", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11.2.1.28%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____8"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_3_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____6"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_4_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____4"}, {"url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_5_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____2"}], "x_generator": {"engine": "CVE-Request-form 0.0.1"}, "descriptions": [{"lang": "en", "value": "Lakeside SysTrack Agent 11 before 11.5.0.15 has a race condition with resultant local privilege escalation to SYSTEM. The fixed versions are 11.2.1.28, 11.3.0.38, 11.4.0.24, and 11.5.0.15."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-362", "description": "CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T20:11:43.803Z"}}}, "cveMetadata": {"cveId": "CVE-2026-35099", "state": "PUBLISHED", "dateUpdated": "2026-04-01T20:11:43.803Z", "dateReserved": "2026-04-01T15:39:51.020Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-01T15:39:51.438Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Lakeside SysTrack Agent 11 before 11.5.0.15 has a race condition with resultant local privilege escalation to SYSTEM. The fixed versions are 11.2.1.28, 11.3.0.38, 11.4.0.24, and 11.5.0.15."}], "id": "CVE-2026-35099", "lastModified": "2026-04-03T16:11:11.357", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.4, "impactScore": 5.9, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2026-04-01T16:23:50.953", "references": [{"source": "cve@mitre.org", "url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11.2.1.28%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____8"}, {"source": "cve@mitre.org", "url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_3_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____6"}, {"source": "cve@mitre.org", "url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_4_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____4"}, {"source": "cve@mitre.org", "url": "https://documentation.lakesidesoftware.com/en/Content/Release%20Notes/Agent/11_5_xxx%20Hotfix%20Agent%20Release%20Notes.htm?tocpath=Release%20Notes%7CAgent%7C_____2"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-362"}], "source": "cve@mitre.org", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[11,11.2.1.28)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[11.3,11.3.0.38)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[11.4,11.4.0.24)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[11.5,11.5.0.15)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "SysTrack Agent", "source": "cna", "vendor": "Lakeside Software"}, "product": "systrack_agent", "vendor": "lakesidesoftware"}], "analysis": {"en": {"generated_at": "2026-04-02T05:11:23.687347+00:00", "value": {"mitigation_remediation": ["Upgrade SysTrack Agent to version 11.5.0.15 or later", "Verify that the agent service runs with the least privilege necessary", "Monitor event logs for unexpected privilege escalation activity", "If an upgrade cannot be performed immediately, temporarily disable the agent service until the fix is applied"], "summary": {"action": "Apply Patch", "impact": "Local privilege escalation to SYSTEM"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all instances of Lakeside Software\u2019s SysTrack Agent versions earlier than 11.5.0.15. Fixed releases are 11.2.1.28, 11.3.0.38, 11.4.0.24, and 11.5.0.15; any system running an earlier version remains exposed.", "description_and_impact": "A race condition exists within Lakeside SysTrack Agent that allows a local attacker to elevate privileges to the SYSTEM account. The flaw arises from a concurrency error (CWE-362) where timing inconsistencies in the agent\u2019s internal operations can be exploited to gain full control over the host, execute arbitrary code, and compromise the entire system.", "risk_and_exploitability": "The CVSS score of 7.4 indicates high severity for users with local access, and EPSS data is not available. The flaw is not listed in major known exploited vulnerabilities catalogs. Attackers would need local presence to trigger the race condition in the agent service, which runs with SYSTEM privileges."}}}}, "created": "2026-04-02T07:48:56.447595+00:00", "title": "Race Condition in Lakeside SysTrack Agent Enables Local Privilege Escalation", "updated": "2026-04-02T20:17:21.993589+00:00", "vendors": ["lakesidesoftware", "lakesidesoftware$PRODUCT$systrack_agent"]}