PT-2025-31640 · Hangzhou Shunwang · Hangzhou Shunwang Rentdrv2

Published

2025-08-01

Updated

2025-08-01

CVE-2023-44976

CVSS v3.1

3.2

Low

Vector

AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Hangzhou Shunwang Rentdrv2 versions prior to 2024-12-24

Description Hangzhou Shunwang Rentdrv2 is susceptible to a local privilege escalation issue. An attacker can terminate Endpoint Detection and Response (EDR) processes using a DeviceIoControl call with the control code 0x22E010. This issue was exploited in the wild in October 2023.

Recommendations Update Hangzhou Shunwang Rentdrv2 to version 2024-12-24 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-782

Related Identifiers

CVE-2023-44976

Affected Products

Hangzhou Shunwang Rentdrv2

PT-2025-31640 · Hangzhou Shunwang · Hangzhou Shunwang Rentdrv2

CVE-2023-44976

Weakness Enumeration

Related Identifiers

Affected Products

References · 6