{"uuid": "e039276c-f82e-4804-b8bb-1aa9c6670aaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48558", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/116849683894838179", "content": "SimpleHelp CVE-2026-48558 is now confirmed exploited-in-the-wild and on US CISA KEV https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-48558\nWe are scanning for SimpleHelp CVE-2026-48558 vulnerable instances since 2026-06-16. We see 439 unpatched in our 2026-07-01 scan. Most (268) found in the US.\nRaw IP data in https://www.shadowserver.org/what-we-do/network-reporting/vulnerable-http-report/ for your network/constitiuency\nDashboard World Map view:  https://dashboard.shadowserver.org/statistics/combined/map/?date_range=1&amp;map_type=std&amp;source=http_vulnerable&amp;source=http_vulnerable6&amp;tag=cve-2026-48558%2B&amp;data_set=count&amp;scale=log&amp;auto_update=on\nWe also recently collaborated with Validin for additional domain based detections, thank you!\nPatch info: https://simple-help.com/security/simplehelp-security-update-2026-05", "creation_timestamp": "2026-07-02T09:31:19.901994Z"}