PT-2026-31701 · Entech Taiwan · Powerstrip
Published
2026-03-04
·
Updated
2026-05-15
·
CVE-2026-29923
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
EnTech Taiwan PowerStrip versions up to and including 3.90.736
Description
The pstrip64.sys driver in EnTech Taiwan PowerStrip allows local users to escalate privileges to SYSTEM via a crafted IOCTL request. This enables unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures.
Recommendations
Update to a version of EnTech Taiwan PowerStrip newer than 3.90.736.
Exploit
Fix
LPE
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Powerstrip