CVE-2024-57727CISA KEV: Actively Exploited

SimpleHelp Path Traversal Vulnerability

Published Feb 13, 2025·Updated Feb 13, 2025

Description

SimpleHelp remote support software contains multiple path traversal vulnerabilities that allow unauthenticated remote attackers to download arbitrary files from the SimpleHelp host via crafted HTTP requests. These files may include server configuration files and hashed user passwords.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free