Security researchers have found that SteelSeries & Razer devices have LPE (Local Privilege Escalation) vulnerability.

SteelSeries Bug

Security searcher Amer was able to achieve SYSTEM Privilege using a link in the License Agreement screen during the device setup process. A real SteelSeries device is not necessary to exploit the bug.

Source: https://www.bleepingcomputer.com/news/security/steelseries-bug-gives-windows-10-admin-rights-by-plugging-in-a-device/

Razer Software Bug

Razer Software bug was discovered by a security researcher named jonhat. He discovered that plugging in the Razer device will automatically download RazerInstaller as SYSTEM and was able to get the elevated Explorer to open PowerShell within the RazerInstaller.

Sources: https://www.bleepingcomputer.com/news/security/razer-bug-lets-you-become-a-windows-10-admin-by-plugging-in-a-mouse/

RELATED ARTICLESMORE FROM AUTHOR