Razer Software is a computer manufacturer that offers a wide range of gaming laptops and other devices. One of their products, the Razer Blade, is a laptop that is popular for gaming. It has an Intel Core i7-8750H processor and 16GB of memory. It also has a GeForce GTX 1070 graphics card and a 1TB hard drive. One vulnerability that could be exploited on the Razer Blade is the lack of security measures that are in place to protect users from unauthorized access to their device. This could allow someone with administrative rights on the device to access sensitive information, such as user passwords or credit card information. This could have serious consequences for users who use the Razer Blade for gaming purposes. If you are using the Razer Blade for gaming, it is important to take steps to secure your device against unauthorized access. One way to do this is to install security patches from Razer Software onto your device. Another way to secure your blade is by using a password manager such as LastPass or KeePassX. These password managers keep your passwords safe and easy to access, even if you lose or forget them.

Razer’s Zero-Day Vulnerability

The vulnerability was first discovered by Security researcher jonhat and posted on Twitter. It was then tested and verified by Bleeping Computer. The publication was able to confirm that the vulnerability does exist.

All you need to do is plug in a razer mouse, dongle, or keyboard. Next, Windows 10 will download and execute RazerInstaller as SYSTEM, which grants full privileges. From there, you can use the elevated Explorer to open Powershell with a keyboard shortcut. Once that’s done, the sky’s the limit in terms of what you can do on the computer.

Tried contacting @Razer, but no answers. So here’s a freebie pic.twitter.com/xDkl87RCmz

— jonhat (@j0nh4t) August 21, 2021

Obviously, this vulnerability requires the person to physically be near the computer to plug in a Razer peripheral, so it’s not the kind of threat you need to worry about being exploited remotely. Still, anything that can grant an unauthorized person full access to a computer without permission is something that needs to be taken seriously and fixed quickly.

What Is Razer Doing?

Fortunately, Razer reached out to the researcher who discovered the vulnerability and said it is working on a fix as quickly as possible. Hopefully, an update is released soon that will handle the problem, as it needs to be addressed before it’s exploited by too many people.

Generously, Razer offered researcher jonhat a bounty even though he disclosed the bug publicly, so the company does seem appreciative that the bug has been discovered, allowing Razer to fix it to prevent future exploits.