CVE-2023-44976

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via...

Basic Information

CVE State: PUBLISHED
Reserved Date: October 02, 2023
Published Date: August 01, 2025
Last Updated: August 01, 2025
Vendor: Hangzhou Shunwang
Product: Rentdrv2
Description: Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.

CVSS Scores

CVSS v3.1

3.2 - LOW

Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

SSVC Information

Exploitation: poc
Technical Impact: partial

Exploit Status

Exploited in the Wild: Yes (2026-06-01 10:38:13 UTC) Source

References

https://github.com/keowu/BadRentdrv2 https://unit42.paloaltonetworks.com/agonizing-serpens-targets-israeli-tech-higher-ed-sectors/

Known Exploited Vulnerability Information

Source	Added Date
CVE	2026-06-01 10:38:13 UTC

Timeline

CVE ID Reserved

October 02, 2023
CVE Published to Public

August 01, 2025
Added to KEVIntel

June 01, 2026