THREATOPS
THREAT OPSThreat News › Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability

Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability

lowmandiant_gtiPublished 2026-05-25

<div class="block-paragraph_advanced"><p>Written by: Takahiro Sugiyama, Peter Revelant, Mathew Potaczek</p> <hr /></div> <div class="block-paragraph_advanced"><h3><span style="vertical-align: baseline;">Introduction</span></h3> <p><span style="vertical-align: baseline;">In late 2025, Mandiant responded to a security incident involving a compromised web server running </span><a href="https://www.di

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://cloud.google.com/blog/topics/threat-intelligence/knowledgedeliver-viewstate-deserialization-vulnerability/