Arbitrary Code Execution Vulnerability in Razer Synapse 3
CVE-2024-29404

Currently unrated

Key Information:

Vendor

Razer

Status
Razer Synapse 3
Vendor
CVE Published:
3 December 2024

What is CVE-2024-29404?

A vulnerability exists in Razer Synapse 3, specifically in versions 3.9.131.20813 and the Synapse 3 App v.20240213. This vulnerability enables a local attacker to execute arbitrary code by manipulating the export parameter within the Chroma Effects function of the Profiles component. Such exploitation could potentially allow unauthorized access and compromise the integrity of the system running the software.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.zerodayinitiative.com/blog/2022/3/16/abusing-...
https://www.razer.com/synapse-3
https://github.com/mansk1es/CVE-2024-29404_Razer

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

JSON
.