Simplehelp Security Vulnerabilities and Issues — Simplehelp CVE List

Simple-helpSimplehelp

5 matches found

CVE•added 2025/01/15 12:0 a.m.•290 views

CVE-2024-57727

CVE-2024-57727 affects SimpleHelp RMM

9.1CVSS7.5AI score0.94049EPSS

In wildWeb

CVE•added 2025/01/15 12:0 a.m.•203 views

CVE-2024-57728

CVE-2024-57728 affects SimpleHelp remote support software versions 5.5.7 and earlier. The flaw allows an admin to upload arbitrary files via a crafted zip (zip slip), enabling remote code execution on the SimpleHelp server when exploited in the admin context. Connected documents describe an attac...

7.2CVSS7.9AI score0.54072EPSS

In wild

CVE•added 2025/01/15 12:0 a.m.•162 views

CVE-2024-57726

CVE-2024-57726 affects SimpleHelp remote support software, versions 5.5.7 and earlier. The issue allows low-privilege technicians to create API keys with excessive permissions, enabling privilege escalation to the server admin role. Public disclosures and multiple security feeds corroborate the h...

9.9CVSS7.2AI score0.3883EPSS

In wild

CVE•added 2025/07/25 4:37 p.m.•25 views

CVE-2025-36727

CVE-2025-36727 — SimpleHelp is affected in versions before 5.5.12 due to the inclusion of functionality from an untrusted control sphere. The issue enables remote code execution and authentication bypass, allowing an attacker to execute arbitrary commands on a vulnerable system. Reported details ...

8.8CVSS6.4AI score0.00284EPSS

CVE•added 2025/07/25 4:42 p.m.•15 views

CVE-2025-36728

CVE-2025-36728 (SimpleHelp) is a Cross-Site Request Forgery (CSRF) vulnerability affecting SimpleHelp versions prior to 5.5.11. Public records from NVD/Red Hat/CVE lists identify the issue as CSRF with a high impact in the NVD score (high confidentiality, integrity, and availability impact). PT-S...

8.8CVSS6.5AI score0.00089EPSS