Description
SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted without verifying their cryptographic signature. In a vulnerable configuration, a remote, unauthenticated attacker can submit a forged token containing arbitrary identity claims to obtain a fully authenticated technician session. In some configurations, this may also allow bypass of multi-factor authentication. No user interaction is required.
Published: 2026-06-12
Score: 9.5 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

SimpleHelp versions 5.5.15 and earlier, as well as pre‑release 6.0 releases, allow an attacker to bypass authentication by submitting an OIDC identity token without the server verifying its cryptographic signature. The vulnerability enables a remote, unauthenticated attacker to create a forged token containing arbitrary identity claims, thereby gaining a fully authenticated technician session. In some configurations the flaw also permits bypass of multi‑factor authentication. The weakness is a missing signature verification and is classified as CWE‑347.

Affected Systems

The affected product is SimpleHelp by SimpleHelp, any installation using OIDC authentication on the vulnerable versions listed above. The CVE description does not specify a particular sub‑product or additional components, so any environment running the susceptible SimpleHelp releases should be considered at risk.

Risk and Exploitability

The CVSS score of 9.5 indicates a high severity with a full authentication bypass. The EPSS score is not available, but the vulnerability can be exploited remotely with no user interaction and no special privileges, making it accessible to a broad threat set. It is not listed in the CISA KEV catalog. Because the flaw allows an unauthenticated attacker to impersonate a technician or bypass MFA, the risk to confidentiality and integrity of the system is significant. The likely attack vector is a remote HTTP request to the OIDC authentication endpoint with a crafted JWT, exploiting the missing signature validation step.

Generated by OpenCVE AI on June 12, 2026 at 19:30 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update SimpleHelp to the latest released version with OIDC signature verification enabled
  • If an update is not immediately possible, temporarily disable OIDC authentication or enforce strict JWT signature checks through middleware
  • Verify that the OIDC provider’s configuration requires valid signatures and does not tolerate unsigned tokens

Generated by OpenCVE AI on June 12, 2026 at 19:30 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

 ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 12 Jun 2026 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Simple-help
Simple-help simplehelp
Vendors & Products Simple-help
Simple-help simplehelp

Fri, 12 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 12 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
Description SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted without verifying their cryptographic signature. In a vulnerable configuration, a remote, unauthenticated attacker can submit a forged token containing arbitrary identity claims to obtain a fully authenticated technician session. In some configurations, this may also allow bypass of multi-factor authentication. No user interaction is required.
Title SimpleHelp Authentication Bypass via Missing OIDC JWT Signature Verification
Weaknesses CWE-347
References
Metrics cvssV3_1

{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}

cvssV4_0

{'score': 9.5, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}

Subscriptions

Simple-help Simplehelp
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-13T03:56:09.983Z

Reserved: 2026-05-21T18:34:46.418Z

Link: CVE-2026-48558

cve-icon Vulnrichment

Updated: 2026-06-12T18:21:36.880Z

cve-icon NVD

Status : Received

Published: 2026-06-12T18:16:35.317

Modified: 2026-06-12T18:16:35.317

Link: CVE-2026-48558

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-12T19:45:27Z

Weaknesses
  • CWE-347

    Improper Verification of Cryptographic Signature