THREAT OPS › CVEs › CVE-2024-57726
CVE-2024-57726 — SimpleHelp Missing Authorization Vulnerability
SimpleHelp contains a missing authorization vulnerability that could allow low-privileged technicians to create API keys with excessive permissions. These API keys can be used to escalate privileges to the server admin role.
Vulnerability details
- Affected productsSimpleHelp
- KEV remediation due2026-05-08