CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11653

Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the Devices directory, which allows local users to gain privileges via a Trojan horse (1) RazerConfigNative.dll or (2) RazerConfigNativeLOC.dll file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

http://packetstormsecurity.com/files/143516/Razer-Synapse-2.20-DLL-Hijacking.html
http://packetstormsecurity.com/files/143516/Razer-Synapse-2.20-DLL-Hijacking.html

Products affected by CVE-2017-11653

Razer » Synapse » Version: N/A

cpe:2.3:a:razer:synapse:-
Razer » Synapse » Version: 2.20.15.1013

cpe:2.3:a:razer:synapse:2.20.15.1013
Razer » Synapse » Version: 2.20.15.1031

cpe:2.3:a:razer:synapse:2.20.15.1031
Razer » Synapse » Version: 2.20.15.1104

cpe:2.3:a:razer:synapse:2.20.15.1104
Razer » Synapse » Version: 2.20.15.822

cpe:2.3:a:razer:synapse:2.20.15.822

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11653

Products

Pricing

Contact Us