Skip to main content
All vulnerabilities
CVE-2024-57728 Known ransomware use CVSS 7.2

SimpleHelp Path Traversal Vulnerability

SimpleHelp SimpleHelp

Added to KEV catalog
24 April 2026
Federal remediation due date
8 May 2026
Weakness classification (CWE)
CWE-22

AI Breakdown

What it is

This vulnerability affects SimpleHelp software, allowing an admin user to upload a specially crafted zip file. This "zip slip" technique enables them to place any file anywhere on your system. As a result, attackers can run unauthorized code on the server where SimpleHelp is installed.

Why it matters

This is a critical vulnerability because an attacker could gain full control of your system, potentially installing ransomware or other malicious software. This vulnerability is actively being exploited in known ransomware campaigns, making immediate action essential to protect your organization. Federal agencies are mandated to address this by May 8, 2026, underscoring its high severity.

Recommended action

Your most important step is to apply any available security updates or mitigations provided by SimpleHelp immediately. If no patches are available, you must either follow applicable BOD 22-01 guidance for cloud services or discontinue using the product entirely. Prioritize patching to eliminate the risk, or remove the software if no fix is possible.

AI-generated from CISA and NVD data — treat as a starting point, not a substitute for your own risk assessment.

CISA Description

SimpleHelp contains a path traversal vulnerability that allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file (i.e. zip slip). This can be exploited to execute arbitrary code on the host in the context of the SimpleHelp server user.

Required action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Notes

https://simple-help.com/kb---security-vulnerabilities-01-2025#security-vulnerabilities-in-simplehelp-5-5-7-and-earlier ; https://nvd.nist.gov/vuln/detail/CVE-2024-57728

NVD Technical Description

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file (i.e. zip slip). This can be exploited to execute arbitrary code on the host in the context of the SimpleHelp server user.

Confirm Your Exposure

Is this vulnerability present in your environment?

CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.

Explore VAPT Services