Primary

Context

Razer Synapse 3 Local Privilege Escalation Vulnerability via Macro Module Link Following

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in Razer Synapse 3. This issue arises within the Razer Synapse Service, where an attacker can create a symbolic link to manipulate the service into deleting arbitrary files. By exploiting this vulnerability, an attacker with low privileges can escalate rights and execute code with SYSTEM privileges. To exploit this vulnerability, an attacker must first gain the ability to run low-privileged code on the target system.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling an attacker to execute arbitrary code with SYSTEM privileges on the affected system.

Remediation

Users can update to Razer Synapse 3 version 3.10.730.71519 to address this vulnerability.

Added: Oct 29, 2025, 8:18 PM

Updated: Oct 29, 2025, 8:18 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

10.0

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Razer Synapse 3 Local Privilege Escalation Vulnerability via Macro Module Link Following

Vulnerability

Impact

Remediation

Affected Products

Razer Synapse 3

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating