CVE-2023-3514 Information

Description

Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling \AddModule\ or �ninstallModules\ command to execute arbitrary executable file.

Reference

https://starlabs.sg/advisories/23/23-3514/