VYPR
High severity7.2CISA KEVNVD Advisory· Published Jan 15, 2025· Updated Apr 24, 2026

CVE-2024-57728

CVE-2024-57728

Description

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file (i.e. zip slip). This can be exploited to execute arbitrary code on the host in the context of the SimpleHelp server user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:simple-help:simplehelp:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:simple-help:simplehelp:*:*:*:*:*:*:*:*range: <5.5.8
    • (no CPE)range: <=5.5.7

Patches

Vulnerability mechanics

References

5

News mentions

2