CVE-2023-44976 — LOW (3.2) — White Hats Nepal

Vulnerability Description

Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.

CVSS Score

3.2

LOW

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Related Weaknesses (CWE)

CWE-782

References

FAQ

What is CVE-2023-44976?

CVE-2023-44976 is a vulnerability with a CVSS score of 3.2 (LOW). Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in th...

How severe is CVE-2023-44976?

CVE-2023-44976 has been rated LOW with a CVSS base score of 3.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-44976?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.