CVE-2023-44976

Summary

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.

Affected Software

VendorProductVersion RangeStatus
Hangzhou ShunwangRentdrv21aed62a63b4802e599bbd33162319129501d603cceeb5e1eb22fd4733b3018a3affected
Hangzhou ShunwangRentdrv29165d4f3036919a96b86d24b64d75d692802c7513f2b3054b20be40c212240a5affected

Weaknesses

  • CWE-782: CWE-782 Exposed IOCTL with Insufficient Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References