A newly disclosed zero-day vulnerability in the KnowledgeDeliver Learning Management System has been actively exploited in the wild to deploy the BLUEBEAM in-memory web shell, according to incident response findings published by Mandiant. The flaw, tracked as CVE-2026-5426, enables unauthenticated remote code execution and affects all deployments that relied on default ASP.NET configuration settings before February […]
The post Attackers Use KnowledgeDeliver LMS 0-Day to Install BLUEBEAM Web Shell appeared first on Cyber Security News.