{"uuid": "ac392b68-dd02-4625-914c-d6a3f054cc68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2611", "type": "exploited", "source": "https://t.me/thehackernews/7724", "content": "\ud83c\udf6a A cookie that spawns a shell \ud83d\udc80\n\nA critical flaw (CVE-2025-2611, CVSS 9.3) in ICTBroadcast autodialer software is under active exploitation.\n\nAttackers inject commands via the BROADCAST session cookie for unauthenticated remote code execution.\n\nNo patch yet \u2014 check your stack \u2192 https://thehackernews.com/2025/10/hackers-target-ictbroadcast-servers-via.html\n\n~200 servers are exposed.", "creation_timestamp": "2025-10-15T06:21:55.000000Z"}