Skip to main content
All vulnerabilities
CVE-2024-57726 Known ransomware use CVSS 9.9

SimpleHelp Missing Authorization Vulnerability

SimpleHelp SimpleHelp

Added to KEV catalog
24 April 2026
Federal remediation due date
8 May 2026
Weakness classification (CWE)
CWE-862

AI Breakdown

What it is

This vulnerability in SimpleHelp software allows someone with limited technician access to create special keys that grant them much higher control. These keys can then be used to gain full administrative access to the server. It affects SimpleHelp versions up to and including 5.5.7.

Why it matters

This is a critical flaw with a severe impact, scoring 9.9 out of 10, because it directly leads to full server control. The urgency is heightened as this vulnerability is actively being used in known ransomware campaigns. This means systems running SimpleHelp are at immediate risk of compromise.

Recommended action

You must immediately apply any available mitigations or patches provided by SimpleHelp to address this critical vulnerability. If no mitigations are available, CISA advises discontinuing the use of the SimpleHelp product. For cloud services, ensure compliance with BOD 22-01 guidance.

AI-generated from CISA and NVD data — treat as a starting point, not a substitute for your own risk assessment.

CISA Description

SimpleHelp contains a missing authorization vulnerability that could allow low-privileged technicians to create API keys with excessive permissions. These API keys can be used to escalate privileges to the server admin role.

Required action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Notes

https://simple-help.com/kb---security-vulnerabilities-01-2025#security-vulnerabilities-in-simplehelp-5-5-7-and-earlier ; https://nvd.nist.gov/vuln/detail/CVE-2024-57726

NVD Technical Description

SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low-privileges technicians to create API keys with excessive permissions. These API keys can be used to escalate privileges to the server admin role.

Confirm Your Exposure

Is this vulnerability present in your environment?

CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.

Explore VAPT Services