Twitter user @j0nh4t shared that one way you can access this escalation-of-privilege flaw is simply by plugging in a Razer mouse. This then triggers Windows 10’s automatic driver installer, which then prompts the installation of Razer Synapse. From there, you can retain the elevated permissions using PowerShell.
Tried contacting @Razer, but no answers. So here’s a freebie pic.twitter.com/xDkl87RCmz — jonhat (@j0nh4t) August 21, 2021 A similar issue was found with SteelSeries software. But things go a little further as you don’t even need to plug in an actual peripheral. The same level of access can be gained from viewing the license agreement in a browser, saving the web page, then launching PowerShell from the file dialogue that appears. Alternatively, you can also run an Android script to mimic a SteelSeries device to trigger an installation process then use the method described above.
— Lawrence 勞倫斯 (@zux0x3a) August 23, 2021 For the most part, this sort of vulnerability won’t affect you if you use a Windows 10 PC at home and run it normally as an admin anyway. But it’s definitely something to think about if you have a laptop that you take outside, and allow others to use it on occasion. Razer and SteelSeries have both said that they are working on fixing this. (Source: @j0nh4t, @zux0x3a, @an0n_r0, Tom’s Guide [1], [2] . Image: Razer)
