vpatch-CVE-2024-57727 AppSec Rule

« vpatch-CVE-2024-57727 »
v0.4 by crowdsecurity
AppSec rule

Detects unauthenticated path traversal attempts targeting SimpleHelp <= 5.5.7

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2024-57727

YAML Configuration

1## autogenerated on 2025-03-28 15:52:48
2name: crowdsecurity/vpatch-CVE-2024-57727
3description: 'Detects unauthenticated path traversal attempts targeting SimpleHelp <= 5.5.7'
4rules:
5  - and:
6      - zones:
7          - URI
8        transform:
9          - lowercase
10        match:
11          type: contains
12          value: /toolbox-resource/../
13labels:
14  type: vulnerability
15  service: http
16  confidence: 3
17  spoofable: 0
18  behavior: 'http:exploit'
19  label: 'SimpleHelp - Path Traversal'
20  classification:
21    - cve.CVE-2024-57727
22    - attack.T1190
23    - cwe.CWE-22
24

Hub Appsec rule

« vpatch-CVE-2024-57727 »v0.4 by crowdsecurityAppSec rule

« vpatch-CVE-2024-57727 »
v0.4 by crowdsecurity
AppSec rule