{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-29923", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-14T16:35:10.310Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-04-09T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-09T19:25:32.138Z"}, "descriptions": [{"lang": "en", "value": "The pstrip64.sys driver in EnTech Taiwan PowerStrip <=3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://entechtaiwan.com/util/ps.shtm"}, {"url": "https://packetstorm.news/files/id/218394/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-269", "lang": "en", "description": "CWE-269 Improper Privilege Management"}]}], "references": [{"url": "https://packetstorm.news/files/id/218394/", "tags": ["exploit"]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-14T15:04:25.442279Z", "id": "CVE-2026-29923", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T16:35:10.310Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-29923", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-14T15:04:25.442279Z"}}}], "references": [{"url": "https://packetstorm.news/files/id/218394/", "tags": ["exploit"]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T15:05:13.709Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://entechtaiwan.com/util/ps.shtm"}, {"url": "https://packetstorm.news/files/id/218394/"}], "descriptions": [{"lang": "en", "value": "The pstrip64.sys driver in EnTech Taiwan PowerStrip <=3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-09T19:25:32.138Z"}}}, "cveMetadata": {"cveId": "CVE-2026-29923", "state": "PUBLISHED", "dateUpdated": "2026-04-14T16:35:10.310Z", "dateReserved": "2026-03-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-09T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The pstrip64.sys driver in EnTech Taiwan PowerStrip <=3.90.736 allows local users to escalate privileges to SYSTEM via a crafted IOCTL request enabling unprivileged users to map arbitrary physical memory into their address space and modify critical kernel structures."}], "id": "CVE-2026-29923", "lastModified": "2026-04-14T17:16:48.907", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-09T20:16:24.693", "references": [{"source": "cve@mitre.org", "url": "https://entechtaiwan.com/util/ps.shtm"}, {"source": "cve@mitre.org", "url": "https://packetstorm.news/files/id/218394/"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://packetstorm.news/files/id/218394/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,3.90.736]"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "powerstrip", "vendor": "entechtaiwan"}], "analysis": {"en": {"generated_at": "2026-04-15T19:39:29.971695+00:00", "value": {"mitigation_remediation": ["Obtain and install the latest PowerStrip driver update from EnTech Taiwan that removes the unrestricted physical memory mapping vulnerability. ", "If no update is available at the time, limit local user access to the pstrip64.sys driver by adjusting the driver\u2019s security descriptor or disabling the driver until a patch is released. ", "Continuously monitor system logs for anomalous IOCTL activity against the PowerStrip driver and investigate any unexpected access."], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "This flaw affects installers of EnTech Taiwan PowerStrip for all platforms where the pstrip64.sys driver is installed. Vulnerable versions are any release up to and including 3.90.736. The issue is limited to the specified driver; other EnTech products are not mentioned.", "description_and_impact": "The vulnerability resides in the pstrip64.sys driver of the EnTech Taiwan PowerStrip, which permits local users to issue a specially crafted IOCTL request that maps arbitrary physical memory into the process address space. This mapping enables a low\u2011privileged user to read or write any memory, including critical kernel data structures. Because the driver runs with SYSTEM privileges, a successful exploitation results in privilege escalation to SYSTEM, giving the attacker full control over the system. The flaw is rooted in improper privilege management (CWE-269).", "risk_and_exploitability": "The CVSS base score of 7.8 indicates a high severity level, while the EPSS score of less than 1% suggests a low probability of widespread exploitation in the near term. The flaw is not listed in the CISA KEV catalog, implying no known widespread active exploitation. To exploit the vulnerability, an attacker must be present on the system with user\u2011level access and must be able to invoke the driver\u2019s IOCTL interface. Once the arbitrary physical memory mapping is achieved, the attacker can manipulate kernel data structures, effectively achieving SYSTEM privileges."}}}}, "created": "2026-04-10T08:53:57.611501+00:00", "title": "Local Privilege Escalation via Unrestricted Physical Memory Mapping in EnTech Taiwan PowerStrip Driver", "updated": "2026-04-15T19:45:12.726515+00:00", "vendors": ["entechtaiwan", "entechtaiwan$PRODUCT$powerstrip"]}