A vulnerability that allows third parties to inject malicious code into replays has recently been discovered. This code is executed automatically when opening the compromised replays via the client. This means that your system may be at risk when you download potentially modified replays from the internet.
This vulnerability will be fixed in Update 9.5 for World of Tanks.
We would like to draw your attention to the fact that replays provided by players on the official forums may also be dangerous. If you are not sure that the replay comes from a reliable source, please avoid downloading and watching it. You should also avoid watching any previously downloaded replays.
Thank you for your understanding and patience in this matter.