VulnerabilityBleeping Computer
9.1 — CRITICAL
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
A zero-day vulnerability in KnowledgeDeliver's shared machine key allowed threat actors to deploy a Godzilla web shell, compromising servers and planting backdoors. This attack highlights the importance of securing ViewState deserialization attacks.
⚙️Technical Details
💥Impact Assessment
Severity: Critical
🛡️Recommended Actions
1Implement secure ViewState deserialization practices, including using unique machine keys
2Regularly update and patch KnowledgeDeliver installations to prevent exploitation of CVE-2026-5426
3Monitor for suspicious activity and implement intrusion detection systems to detect Godzilla web shell deployments
📦Affected Products
KnowledgeDeliver LMS
🔐NVD Verified DataVERIFIED
CVE-2026-5426 ↗CVSS 9.1 — CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NWeaknesses
CWE-321CWE-502
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.