Razer

Synapse

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-9870

  • EPSS 0.01%
  • Veröffentlicht 29.10.2025 19:34:08
  • Zuletzt bearbeitet 04.11.2025 21:31:48

Razer Synapse 3 RazerPhilipsHueUninstall Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Razer Synapse 3. An attacker must first obtain the ability...

7.8

CVE-2025-9871

  • EPSS 0.01%
  • Veröffentlicht 29.10.2025 19:33:46
  • Zuletzt bearbeitet 06.11.2025 19:34:28

Razer Synapse 3 Chroma Connect Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Razer Synapse 3. An attacker must first obtain the ability to execut...

7.8

CVE-2025-9869

  • EPSS 0.01%
  • Veröffentlicht 29.10.2025 19:33:09
  • Zuletzt bearbeitet 04.11.2025 21:28:40

Razer Synapse 3 Macro Module Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Razer Synapse 3. An attacker must first obtain the ability to execute ...

7.8

CVE-2025-27811

  • EPSS 0.02%
  • Veröffentlicht 04.06.2025 00:00:00
  • Zuletzt bearbeitet 09.06.2025 15:04:07

A local privilege escalation in the razer_elevation_service.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerable COM interface in the target service.

7.8

CVE-2024-29404

  • EPSS 8.3%
  • Veröffentlicht 03.12.2024 17:15:10
  • Zuletzt bearbeitet 13.12.2024 14:15:21

An issue in Razer Synapse 3 v.3.9.131.20813 and Synapse 3 App v.20240213 allows a local attacker to execute arbitrary code via the export parameter of the Chroma Effects function in the Profiles component.

7.8

CVE-2022-47631

Exploit
  • EPSS 0.05%
  • Veröffentlicht 14.09.2023 22:15:07
  • Zuletzt bearbeitet 21.11.2024 07:32:17

Razer Synapse through 3.7.1209.121307 allows privilege escalation due to an unsafe installation path and improper privilege management. Attackers can place DLLs into %PROGRAMDATA%\Razer\Synapse3\Service\bin if they do so before the service is install...

6.8

CVE-2022-47632

Exploit
  • EPSS 0.06%
  • Veröffentlicht 27.01.2023 15:15:09
  • Zuletzt bearbeitet 28.03.2025 16:15:22

Razer Synapse before 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious DLLs into %PROGRAMDATA%\Razer\Synapse3\Service\bin ...

7.3

CVE-2021-44226

Exploit
  • EPSS 0.06%
  • Veröffentlicht 23.03.2022 22:15:12
  • Zuletzt bearbeitet 21.11.2024 06:30:37

Razer Synapse before 3.7.0228.022817 allows privilege escalation because it relies on %PROGRAMDATA%\Razer\Synapse3\Service\bin even if %PROGRAMDATA%\Razer has been created by any unprivileged user before Synapse is installed. The unprivileged user ma...

5.5

CVE-2021-30493

Exploit
  • EPSS 0.05%
  • Veröffentlicht 14.04.2021 15:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:01

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the ChromaBroadcast subkey. These privileged operations consist of file name concatenation of a runtime log file that is u...

5.5

CVE-2021-30494

Exploit
  • EPSS 0.05%
  • Veröffentlicht 14.04.2021 15:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:02

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the Razer Chroma SDK subkey. These privileged operations consist of file name concatenation of a runtime log file that is ...