CVE-2023-44976

LOW EXPLOITED

Hangzhou Shunwang Rentdrv2 <2024-12-24 - Privilege Escalation

Title source: llm

Description

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.

Exploits (1)

nomisec WORKING POC 105 stars

by keowu · local

https://github.com/keowu/BadRentdrv2

View Code ZIP pw:eip

References (2)

[Various Sources] https://github.com/keowu/BadRentdrv2

[Various Sources] https://unit42.paloaltonetworks.com/agonizing-serpens-targets-israeli-tech-higher-ed-sectors/

Scores

CVSS v3 3.2

EPSS 0.0002

EPSS Percentile 6.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Details

VulnCheck KEV 2023-11-23

CWE

CWE-782

Status published

Products (2)

Hangzhou Shunwang/Rentdrv2 1aed62a63b4802e599bbd33162319129501d603cceeb5e1eb22fd4733b3018a3

Hangzhou Shunwang/Rentdrv2 9165d4f3036919a96b86d24b64d75d692802c7513f2b3054b20be40c212240a5

Published Aug 01, 2025

Tracked Since Feb 18, 2026