Summary
BeyondTrust reports a critical pre-authentication RCE vulnerability (CVE-2026-1731) in its Remote Support and Privileged Remote Access products, allowing unauthenticated attackers to execute OS commands.
Take Action:
If you use self-hosted BeyondTrust Remote Support or PRA, this is important. Plan a quick update to the BT26-02 patches. Isolation probably won't work since these systems are designed for remote access. SaaS users are already protected, but self-hosted environments require manual action.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)