Overview

• A remote code execution exploit allows hackers to remotely shut down PCs, type messages in Notepad and open explicit content on player monitors.
• Numerous players, including content creator BAMS, reported IP addresses exposed in game chat and forcible disconnections during online matches.
• Despite widespread warnings since early July, Activision has not issued any official advisory or patch as of July 4.
• The vulnerability is limited to the PC edition available on Xbox Game Pass, with console versions remaining unaffected.
• Security experts warn that legacy Call of Duty titles often lack ongoing support, leaving them prone to exploitation when added to subscription services.