What is CVE-2025-2611?

CVE-2025-2611 is a vulnerability in Ict Innovations Ictbroadcast, classified under OS Command Injection. Published 2025-08-05.

Is CVE-2025-2611 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Ict Innovations Ictbroadcast

CVE-2025-2611

The ICTBroadcast application unsafely passes session cookie data to shell processing, allowing an attacker to inject shell commands into a session cookie that get executed on the server. This results in unauthenticated remote code executio…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.756 (98.9th percentile) — read the EPSS interpretation.

Affected products

Ict Innovations Ictbroadcast — versions 0

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

References

github.com/rapid7/metasploit-framework/pull/20446 (exploit)
www.vulncheck.com/blog/ictbroadcast-kev (technical-description, exploit)
www.vulncheck.com/advisories/ictbroadcast-unauthenticated-session-cookie-rce (third-party-advisory)

Frequently asked questions

What is CVE-2025-2611?: CVE-2025-2611 is a vulnerability in Ict Innovations Ictbroadcast, classified under OS Command Injection. Published 2025-08-05.
Is CVE-2025-2611 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.