CVE-2021-30494

Name of the Vulnerable Software and Affected Versions Razer Synapse 3 (affected versions not specified)

Description The issue concerns the Razer Synapse 3 software suite, where multiple system services perform privileged operations on entries within the Razer Chroma SDK subkey. This involves file name concatenation of a runtime log file used to store runtime log information, potentially allowing an attacker to create a file in an unintended directory, albeit with some limitations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.