A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication protocol. [...]
SimpleHelp bug lets hackers create rogue remote support accounts
Résumé + lien vers la source. Sans paywall, sans tracking.