Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
Mandiant
Google Threat Intelligence Group
Written by: Takahiro Sugiyama, Peter Revelant, Mathew Potaczek
Introduction
In late 2025, Mandiant responded to a security incident involving a compromised web server running KnowledgeDeliver. KnowledgeDeliver is a Learning Management System (LMS) developed by Digital Knowledge co...
