CVE-2023-35303

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 29, 2024

CWE ID 20

Summary

CVE-2023-35303 is a remote code execution vulnerability affecting USB Audio Class System Drivers. Malicious actors can exploit this flaw by sending specially crafted data to a targeted system via USB, allowing them to execute arbitrary code with kernel-level privileges. This vulnerability poses a serious threat, as an attacker could install malware, gain unauthorized access, or manipulate data on the compromised system. System administrators are strongly urged to install the available patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzlEvH
https://www.cve.org/CVERecord?id=CVE-2023-35303
https://nvd.nist.gov/vuln/detail/CVE-2023-35303

Back to Vulnerability Database

CVE-2023-35303

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations