Synapse Security Vulnerabilities and Issues — Synapse CVE List

Lucene search

RazerSynapse

4 matches found

CVE•added 2017/08/02 7:29 p.m.•75 views

CVE-2017-9769

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.

10CVSS9.2AI score0.78553EPSS

CVE•added 2017/09/13 8:29 a.m.•47 views

CVE-2017-14398

rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection.

7.8CVSS7.4AI score0.0005EPSS

CVE•added 2017/08/18 5:29 p.m.•41 views

CVE-2017-11653

Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the Devices directory, which allows local users to gain privileges via a Trojan horse (1) RazerConfigNative.dll or (2) RazerConfigNativeLOC.dll file.

7.8CVSS7.6AI score0.00035EPSS

CVE•added 2017/08/18 5:29 p.m.•33 views

CVE-2017-11652

Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users to gain privileges via a Trojan horse dbghelp.dll file.

8.4CVSS8.1AI score0.00039EPSS