Advertisement
CRITICAL
Vulnerabilities
CVE-2026-5426: KnowledgeDeliver LMS Zero-Day Exploited for Godzilla Shell
Attackers exploited a zero-day in KnowledgeDeliver LMS (CVE-2026-5426) using hard-coded ASP.NET keys to deploy Godzilla web shells and Cobalt Strike Beacons.
Runtime Rebel Intel
4 min read·May 26, 2026
VU
CRITICAL
Vulnerabilities
CVE-2026-5426: RCE via ViewState Deserialization in KnowledgeDeliver
Attackers exploit CVE-2026-5426 in the KnowledgeDeliver LMS to achieve RCE via shared ASP.NET machine keys. Immediate key rotation and patching are required.
Runtime Rebel Intel
3 min read·May 25, 2026