Lucene search
K

6 matches found

CVE
CVE
added 2025/01/15 12:0 a.m.312 views

CVE-2024-57727

CVE-2024-57727 affects SimpleHelp RMM

9.1CVSS7.5AI score0.95151EPSS
In wildWeb
CVE
CVE
added 2026/06/12 5:7 p.m.255 views

CVE-2026-48558

Summary of vulnerability (CVE-2026-48558) : SimpleHelp versions 5.5.15 and earlier and 6.0 pre-release contain an authentication bypass in the OpenID Connect (OIDC) flow. When OIDC is configured, identity tokens are accepted without cryptographic signature verification, allowing a remote, unauthe...

10CVSS5.5AI score0.0116EPSS
In wildWeb
CVE
CVE
added 2025/01/15 12:0 a.m.216 views

CVE-2024-57728

CVE-2024-57728 affects SimpleHelp remote support software versions 5.5.7 and earlier. The flaw allows an admin to upload arbitrary files via a crafted zip (zip slip), enabling remote code execution on the SimpleHelp server when exploited in the admin context. Connected documents describe an attac...

7.2CVSS7.9AI score0.07549EPSS
In wild
CVE
CVE
added 2025/01/15 12:0 a.m.173 views

CVE-2024-57726

CVE-2024-57726 affects SimpleHelp remote support software, versions 5.5.7 and earlier. The issue allows low-privilege technicians to create API keys with excessive permissions, enabling privilege escalation to the server admin role. Public disclosures and multiple security feeds corroborate the h...

9.9CVSS7.2AI score0.09328EPSS
In wild
CVE
CVE
added 2025/07/25 4:37 p.m.29 views

CVE-2025-36727

CVE-2025-36727 — SimpleHelp is affected in versions before 5.5.12 due to the inclusion of functionality from an untrusted control sphere. The issue enables remote code execution and authentication bypass, allowing an attacker to execute arbitrary commands on a vulnerable system. Reported details ...

8.8CVSS6.4AI score0.00423EPSS
CVE
CVE
added 2025/07/25 4:42 p.m.20 views

CVE-2025-36728

CVE-2025-36728 (SimpleHelp) is a Cross-Site Request Forgery (CSRF) vulnerability affecting SimpleHelp versions prior to 5.5.11. Public records from NVD/Red Hat/CVE lists identify the issue as CSRF with a high impact in the NVD score (high confidentiality, integrity, and availability impact). PT-S...

8.8CVSS6.5AI score0.00171EPSS