Hackers Exploit Zero-Day Vulnerability in KnowledgeDeliver for Web Shell Deployment

Hackers exploited a zero-day vulnerability in KnowledgeDeliver to deploy web shells via remote code execution. The flaw stemmed from hardcoded machineKey values in a configuration file, enabling ViewState deserialization attacks. No specific threat actors, dates, or CVE identifiers were disclosed in the report. The attack vector allowed unauthorized execution of arbitrary code on affected systems. The impact included potential unauthorized access and persistence through web shell deployment. No additional technical details or affected versions were provided.