Headline
CVE-2023-35303: USB Audio Class System Driver Remote Code Execution Vulnerability
How could an attacker exploit this vulnerability?
An authenticated attacker could use Remote Desktop to connect to a vulnerable system that has Plug and Play device redirection enabled.
Alternatively, an attacker could plug a specially crafted USB device into the port of a vulnerable system.