CVE-2023-35629

Summary

CVE-2023-35629 is a remote code execution vulnerability affecting Microsoft's USBHUB 3.0 Device Driver. A successful exploit allows attackers to execute arbitrary code on vulnerable systems. This can lead to a compromise of the entire system, potentially resulting in data theft, installation of malware, or unauthorized access to sensitive information. The vulnerability can be exploited through specially crafted USB devices, making it a significant threat to organizations and individuals who rely on USB connections for data transfer. Microsoft has released a patch to address this issue, and it is strongly recommended that users install it as soon as possible to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.