CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-16602

Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary programs because there is a race condition in which a file created under "%PROGRAMDATA%\Razer Chroma\SDK\Apps" can be replaced before it is executed by the server. The attacker must have access to port 54236 for a registration step.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.9%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 6.8

References

Products affected by CVE-2020-16602

Razer » Chroma Sdk » Version: N/A

cpe:2.3:a:razer:chroma_sdk:-
Razer » Chroma Sdk » Version: 1.0.4

cpe:2.3:a:razer:chroma_sdk:1.0.4
Razer » Chroma Sdk » Version: 1.1.5

cpe:2.3:a:razer:chroma_sdk:1.1.5
Razer » Chroma Sdk » Version: 1.10.2

cpe:2.3:a:razer:chroma_sdk:1.10.2
Razer » Chroma Sdk » Version: 1.10.6

cpe:2.3:a:razer:chroma_sdk:1.10.6
Razer » Chroma Sdk » Version: 1.13.6

cpe:2.3:a:razer:chroma_sdk:1.13.6
Razer » Chroma Sdk » Version: 1.14.2

cpe:2.3:a:razer:chroma_sdk:1.14.2
Razer » Chroma Sdk » Version: 1.2.4

cpe:2.3:a:razer:chroma_sdk:1.2.4
Razer » Chroma Sdk » Version: 1.3

cpe:2.3:a:razer:chroma_sdk:1.3
Razer » Chroma Sdk » Version: 1.4.1

cpe:2.3:a:razer:chroma_sdk:1.4.1
Razer » Chroma Sdk » Version: 1.6.2

cpe:2.3:a:razer:chroma_sdk:1.6.2
Razer » Chroma Sdk » Version: 1.7.2

cpe:2.3:a:razer:chroma_sdk:1.7.2
Razer » Chroma Sdk » Version: 1.7.5

cpe:2.3:a:razer:chroma_sdk:1.7.5
Razer » Chroma Sdk » Version: 1.7.8

cpe:2.3:a:razer:chroma_sdk:1.7.8
Razer » Chroma Sdk » Version: 1.8.11

cpe:2.3:a:razer:chroma_sdk:1.8.11
Razer » Chroma Sdk » Version: 1.8.8

cpe:2.3:a:razer:chroma_sdk:1.8.8
Razer » Chroma Sdk » Version: 1.9.6

cpe:2.3:a:razer:chroma_sdk:1.9.6
Razer » Chroma Sdk » Version: 2.1.3

cpe:2.3:a:razer:chroma_sdk:2.1.3
Razer » Chroma Sdk » Version: 2.1.5

cpe:2.3:a:razer:chroma_sdk:2.1.5
Razer » Chroma Sdk » Version: 2.3.6

cpe:2.3:a:razer:chroma_sdk:2.3.6
Razer » Chroma Sdk » Version: 2.4.0

cpe:2.3:a:razer:chroma_sdk:2.4.0
Razer » Chroma Sdk » Version: 2.4.1

cpe:2.3:a:razer:chroma_sdk:2.4.1
Razer » Chroma Sdk » Version: 2.5.3

cpe:2.3:a:razer:chroma_sdk:2.5.3
Razer » Chroma Sdk » Version: 2.6.4

cpe:2.3:a:razer:chroma_sdk:2.6.4
Razer » Chroma Sdk » Version: 2.7.2

cpe:2.3:a:razer:chroma_sdk:2.7.2
Razer » Chroma Sdk » Version: 2.7.4

cpe:2.3:a:razer:chroma_sdk:2.7.4
Razer » Chroma Sdk » Version: 2.7.5

cpe:2.3:a:razer:chroma_sdk:2.7.5
Razer » Chroma Sdk » Version: 2.8.5

cpe:2.3:a:razer:chroma_sdk:2.8.5
Razer » Chroma Sdk » Version: 2.8.6

cpe:2.3:a:razer:chroma_sdk:2.8.6
Razer » Chroma Sdk » Version: 3.00

cpe:2.3:a:razer:chroma_sdk:3.00
Razer » Chroma Sdk » Version: 3.03

cpe:2.3:a:razer:chroma_sdk:3.03
Razer » Chroma Sdk » Version: 3.04

cpe:2.3:a:razer:chroma_sdk:3.04
Razer » Chroma Sdk » Version: 3.05

cpe:2.3:a:razer:chroma_sdk:3.05
Razer » Chroma Sdk » Version: 3.07

cpe:2.3:a:razer:chroma_sdk:3.07
Razer » Chroma Sdk » Version: 3.10.8

cpe:2.3:a:razer:chroma_sdk:3.10.8
Razer » Chroma Sdk » Version: 3.11.11

cpe:2.3:a:razer:chroma_sdk:3.11.11
Razer » Chroma Sdk » Version: 3.12.10

cpe:2.3:a:razer:chroma_sdk:3.12.10
Razer » Chroma Sdk » Version: 3.12.15

cpe:2.3:a:razer:chroma_sdk:3.12.15
Razer » Chroma Sdk » Version: 3.12.17

cpe:2.3:a:razer:chroma_sdk:3.12.17
Razer » Chroma Sdk » Version: 3.8.6

cpe:2.3:a:razer:chroma_sdk:3.8.6
Razer » Chroma Sdk » Version: 3.9.6

cpe:2.3:a:razer:chroma_sdk:3.9.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-16602

Products

Pricing

Contact Us