Critical Vulnerability in Call of Duty: WWII PC Version Leads to Temporary Shutdown
Discover the recent security threat in Call of Duty: WWII PC version where a remote code execution (RCE) vulnerability allowed hackers to compromise players' PCs during live matches. Learn what gamers should do to protect themselves and stay updated on the latest developments.
TL;DR
The PC version of Call of Duty: WWII was temporarily taken offline due to a severe remote code execution (RCE) vulnerability that allowed hackers to take control of players’ PCs. Players are advised to avoid the game until a patch is released and monitor official channels for updates.
Critical Vulnerability in Call of Duty: WWII PC Version Leads to Temporary Shutdown
On Saturday, the Call of Duty team announced that the PC version of Call of Duty: WWII has been taken offline following reports of a serious security issue. This issue appears to be a remote code execution (RCE) vulnerability, allowing attackers to run malicious code on victims’ machines without their consent or physical access.
Background and Impact
After Microsoft’s acquisition of Activision in 2023, Call of Duty titles have been gradually integrated into Xbox and PC Game Pass. However, just days after the 2017 release of Call of Duty: WWII on Microsoft’s subscription service, alarming reports surfaced. Players were exploiting an RCE vulnerability to take over other players’ PCs during live multiplayer matches.
I JUST GOT HACKED PLAYING WW2! EVERYONE DO NOT PLAY WW2 ON GAMEPASS! @Xbox @XboxSupport @Activision @charlieINTEL @CODUpdates @FaZeScope @Mobbing pic.twitter.com/I5pehK1kHK
— Wrioh (@wrioh75753) July 3, 2025
RCE vulnerabilities are critical security flaws that can lead to data breaches, system takeovers, and malware installation. In this instance, attackers exploited the vulnerability to:
- Open command prompts on victims’ PCs
- Send mocking messages via Notepad
- Force remote shutdowns of players’ computers
- Change desktop wallpapers to display inappropriate content
Underlying Causes and Speculations
The hacking of older Call of Duty titles is a known issue within the community, particularly on Steam. The problem likely stems from the game’s reliance on peer-to-peer (P2P) networking, where one player’s machine acts as the match’s server.
There is speculation about Activision updating the game’s anti-cheat systems, known as “Ricochet,” to address the rampant abuse. However, it remains unclear whether this update will effectively fix the RCE vulnerability.
Recommendations for Gamers
This vulnerability poses a significant risk, potentially compromising gamers’ entire PCs remotely. To protect themselves, gamers should:
- Avoid playing Call of Duty: WWII on PC, especially the Microsoft Store and Game Pass versions, until a patch is released.
- Install security updates promptly.
- Use active anti-malware software for protection.
- Monitor official Activision channels for updates on the fix.
Additional Resources
For further insights, check: