THREAT OPS › Threat News › Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
<div class="block-paragraph_advanced"><p>Written by: Takahiro Sugiyama, Peter Revelant, Mathew Potaczek</p> <hr /></div> <div class="block-paragraph_advanced"><h3><span style="vertical-align: baseline;">Introduction</span></h3> <p><span style="vertical-align: baseline;">In late 2025, Mandiant responded to a security incident involving a compromised web server running </span><a href="https://www.di
MITRE ATT&CK techniques
Indicators of compromise
- 913190c02565264d6f8cda8af95926e28fa584188da0f33bcc585e57f92271basha256
- 7c1f99dca8e5a7897892f9d224a6495023a2cfd2671697d229d355978c415ed2sha256
- CVE-2026-5426cve
- https://www.digital-knowledge.co.jp/product/kd/url
- https://www.cve.org/CVERecord?id=CVE-2026-5426url
- https://www.virustotal.com/gui/collection/913190c02565264d6f8cda8af95926e28fa584188da0f33bcc585e57f92271baurl
- 121.0.0.0ipv4
- 1.9.2.13ipv4