New Bug in Razer Software Could Allow Users to Gain Admin Access

A new bug has been discovered in Razer software that can give someone admin access to a Windows 10 or Windows 11 computer.

The exploit was discovered by security researcher jonhat, who shared his findings on Twitter in a video detailing the process. Tech news site Bleeding Computer replicated the access and stated it took 2 minutes to gain admin privileges on a Windows 10 computer.

The way the exploits works is through Razer’s Synapse software, which is a hardware configuration tool. When someone plugs in a Razer device, a mouse, for example, into their Windows 10 or Windows 11 PC, the computer will download Synapse to configure the device and allow various functions to be available.

It is during this process that hackers can exploit a flaw in the configuration process to gain access to the computer on which the device is being installed.

One of the biggest issues with this exploit is how widespread and easy to gain access it is. Razer sells mice for as low as $20 on Amazon, and according to the company, Synapse is used by over 100 million users worldwide.

It’s important to note that any software that has the option to control applications and automatically install itself (in the same manner that Synapse does) can make a computer vulnerable to this exploit.

Jonhat later tweeted that Razer had contacted him and is currently working on a fix.