LMS Vulnerability Exploited to Deploy Malware

A high-severity flaw in Digital Knowledge's KnowledgeDeliver Learning Management System (CVE-2026-5426, CVSS 7.5) was exploited by attackers before being patched. The vulnerability, caused by hard-coded ASP.NET machine keys, allowed attackers to deploy the Godzilla web shell and subsequently launch Cobalt Strike Beacon malware. The LMS is widely used in educational institutions, particularly in Japan. Organizations running affected versions should apply patches immediately to prevent unauthorized access and malware installation. Source: Cybersecurity News.