We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-44976



Description

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.

Reserved 2023-10-02 | Published 2025-08-01 | Updated 2025-08-01 | Assigner mitre


LOW: 3.2CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Problem types

CWE-782 Exposed IOCTL with Insufficient Access Control

Product status

Default status
unknown

1aed62a63b4802e599bbd33162319129501d603cceeb5e1eb22fd4733b3018a3
affected

9165d4f3036919a96b86d24b64d75d692802c7513f2b3054b20be40c212240a5
affected

References

github.com/keowu/BadRentdrv2

unit42.paloaltonetworks.com/...raeli-tech-higher-ed-sectors/

cve.org (CVE-2023-44976)

nvd.nist.gov (CVE-2023-44976)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2023-44976

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.