<ul><li>U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SimpleHelp vulnerability to its Known Exploited Vulnerabilities catalog.</li><li>SimpleHelp vulnerability, tracked as CVE-2024-57727, allows unauthenticated path traversal, giving attackers access to sensitive data from the server.</li><li>Arctic Wolf reports an ongoing campaign targeting SimpleHelp servers by exploiting the vulnerabilities disclosed by Horizon3.</li><li>CISA orders federal agencies to fix the SimpleHelp vulnerability by March 6, 2025.</li></ul>

U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog

Discover more