Vulnerabilities > Razer > Razer Central

DATE CVE VULNERABILITY TITLE RISK
2023-07-14 CVE-2023-3513 Improper Privilege Management vulnerability in Razer Central
Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and triggering an insecure .NET deserialization.
local
low complexity
razer CWE-269
7.8
2023-07-14 CVE-2023-3514 Improper Privilege Management vulnerability in Razer Central
Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to execute arbitrary executable file.
local
low complexity
razer CWE-269
7.8
2023-02-27 CVE-2022-45697 Link Following vulnerability in Razer Central
Arbitrary File Delete vulnerability in Razer Central before v7.8.0.381 when handling files in the Accounts directory.
local
low complexity
razer CWE-59
7.8