Vulnerabilities > Razerzone

DATE	CVE	VULNERABILITY TITLE	RISK
2017-09-13	CVE-2017-14398	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Razer Synapse 2.20.15.1104 rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection. local low complexity razerzone CWE-119	4.6
2017-08-02	CVE-2017-9770	Out-of-bounds Read vulnerability in Razerzone Razer Synapse A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse that can cause an out of bounds read operation to occur due to a field within the IOCTL data being used as a length. local low complexity razerzone CWE-125	2.1
2017-08-02	CVE-2017-9769	Unspecified vulnerability in Razer Synapse 2.20.15.1104 A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process. network low complexity razerzone critical	10.0
2014-10-21	CVE-2014-7685	Cryptographic Issues vulnerability in Razerzone Razer Comms - Gaming Messenger 1.3.07 The Razer Comms - Gaming Messenger (aka com.razerzone.comms) application 1.3.07 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. razerzone CWE-310	5.4

Vulnerabilities > Razerzone {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Razerzone"}]}