CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-3514

Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to execute arbitrary executable file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.4%

CVSS Severity

CVSS v3 Score 7.8

References

https://starlabs.sg/advisories/23/23-3514/
https://starlabs.sg/advisories/23/23-3514/

Products affected by CVE-2023-3514

Razer » Razer Central » Version: Any

cpe:2.3:a:razer:razer_central:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-3514

Products

Pricing

Contact Us