virus logo Intrusion Prevention

SimpleHelp.Remote.Support.CVE-2024-57727.Path.Traversal

description-logoDescription

This indicates an attack attempt to exploit a Path Traversal Vulnerability in SimpleHelp Remote Support.
The vulnerability is due to insufficient validation of user-supplied inputs. An attacker can exploit this vulnerability by sending a maliciously crafted request to the vulnerable application. Successfully exploiting this vulnerability could result in the disclosure of sensitive information.

description-logoOutbreak Alert

FortiGuard Labs continues to observe ongoing attack attempts targeting SimpleHelp, a Remote Monitoring and Management (RMM) software, due to a critical unauthenticated path traversal vulnerability (CVE-2024-57727) affecting versions 5.5.7 and earlier.

View the full Outbreak Alert Report

affected-products-logoAffected Products

SimpleHelp Remote Support 5.5.x prior to 5.5.8
SimpleHelp Remote Support 5.4.x prior to 5.4.10
SimpleHelp Remote Support 5.3.x prior to 5.3.9

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://simple-help.com/kb---security-vulnerabilities-01-2025#security-vulnerabilities-in-simplehelp-5-5-7-and-earlier

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2025-03-11 31.968
Modified
 Sig Added
2025-02-25 30.960
Modified
 Default_action:pass:drop
2025-02-11 30.952
New
ID 57217
Created Jan 22, 2025
Updated Mar 11, 2025
CVE ID
Tags SimpleHelp Ransomware Attack Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 94.02%
Default Action drop
Active
Affected OS All
Affected App Other
Profile Type Path Traversal