CVE-2026-5426 | Digital Knowledge KnowledgeDeliver prior 20260224 ViewState machineKey hard-coded key (MNDT-2026-0009)

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability was found in Digital Knowledge KnowledgeDeliver. It has been declared as problematic. This issue affects some unknown processing of the component ViewState Handler. Such manipulation of the argument machineKey leads to use of hard-coded cryptographic key
.

This vulnerability is traded as CVE-2026-5426. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-5426 | Digital Knowledge KnowledgeDeliver prior 20260224 ViewState machineKey hard-coded key (MNDT-2026-0009)

Post correlati

CVE-2024-0297 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi UploadFirmwareFile FileName os command injection

CVE-2024-5891 | Red Hat Quay Client ID weak authentication

CVE-2025-41432 | OpenHarmony up to 5.1.0.x Pre-installed Apps out-of-bounds write

CVE-2024-37241 | Automattic WP Job Manager Plugin up to 2.1.0 on WordPress cross-site request forgery