# CVE-2024-57726

> SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low-privileges technicians to create API keys with excessive permissions. These API keys can be used to escalate privileges to the server admin role.

- **CVSS:** 9.9 (CRITICAL)
- **EPSS:** 0.3%
- **CWE:** NVD-CWE-noinfo, CWE-862

Canonical: https://intel.threadlinqs.com/cve/CVE-2024-57726
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp