CVE-2018-20817

Name of the Vulnerable Software and Affected Versions: Call of Duty: Modern Warfare 2 versions prior to 2015-08-11 Call of Duty: Modern Warfare 3 versions prior to 2015-08-11 Call of Duty: Ghosts versions prior to 2015-08-11 Call of Duty: Advanced Warfare versions prior to 2015-08-11 Call of Duty: Black Ops 1 versions prior to 2015-08-11 Call of Duty: Black Ops 2 versions prior to 2015-08-11 Cyberpunk 2077 versions prior to hotfix 1.12

Description: The issue is related to a buffer overflow vulnerability, which can lead to remote code execution (RCE) when sending a steam authentication request or using third-party mods. This affects various Call of Duty games and Cyberpunk 2077. The vulnerability allows one to execute code on the remote target machine.

Recommendations: For Call of Duty: Modern Warfare 2 versions prior to 2015-08-11, update to a version released after 2015-08-11. For Call of Duty: Modern Warfare 3 versions prior to 2015-08-11, update to a version released after 2015-08-11. For Call of Duty: Ghosts versions prior to 2015-08-11, update to a version released after 2015-08-11. For Call of Duty: Advanced Warfare versions prior to 2015-08-11, update to a version released after 2015-08-11. For Call of Duty: Black Ops 1 versions prior to 2015-08-11, update to a version released after 2015-08-11. For Call of Duty: Black Ops 2 versions prior to 2015-08-11, update to a version released after 2015-08-11. For Cyberpunk 2077 versions prior to hotfix 1.12, apply hotfix 1.12 to resolve the issue.