Memory Access Vulnerability in Razer Synapse by Razer
CVE-2017-14398

7.8HIGH

Key Information:

Vendor: Razer
Status: Synapse
Vendor: CVE Published:; 13 September 2017

What is CVE-2017-14398?

In Razer Synapse, a flaw found in the rzpnk.sys driver allows local users to leverage improper access to memory. This vulnerability enables unauthorized reading and writing to critical memory locations, facilitating potential privilege escalation. The attack vector relies on appropriate interaction with the device’s physical memory and using specific IOCTL calls, which can lead to significant security risks if exploited.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://twitter.com/FuzzySec/status/907722788219256832

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 13, 2017
Vulnerability Reserved
Sep 12, 2017

JSON

Razer

What is CVE-2017-14398?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.