A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication protocol. [...]
SimpleHelp bug lets hackers create rogue remote support accounts
Summary + source link. No paywalls, no tracking.