An odd vulnerability allows users to gain SYSTEM access on any PC running Windows 10 just by plugging in a Razer gaming mouse or dongle.

You obviously need local access to the machine, but plugging in a Razer device installs RazerInstaller.exe, which runs with SYSTEM privileges, allowing you to then access Windows PowerShell or the File Explorer with these advanced privileges.

https://twitter.com/j0nh4t/status/1429049506021138437?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1429049506021138437%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.windowscentral.com%2Fwindows-10-bug-lets-people-gain-admin-rights-razer-mice

The bug was discovered by a security researcher named Jon Hat, who posted it publicly after first contacting Razer and hearing nothing.

Razer have since confirmed they are working on a fix.

https://twitter.com/j0nh4t/status/1429462941070409728?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1429462941070409728%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.windowscentral.com%2Fwindows-10-bug-lets-people-gain-admin-rights-razer-mice