CVE-2024-57727
SimpleHelp Path Traversal Vulnerability
⚠ KEVEPSS 94.0%
Description
SimpleHelp remote support software contains multiple path traversal vulnerabilities that allow unauthenticated remote attackers to download arbitrary files from the SimpleHelp host via crafted HTTP requests. These files may include server configuration files and hashed user passwords.
How to fix CVE-2024-57727
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2024-57727 being exploited?
Yes — CVE-2024-57727 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.