CVE-2026-1731 | THREATINT

Description

BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.

PUBLISHED Reserved 2026-01-31 | Published 2026-02-06 | Updated 2026-02-06 | Assigner BT

CRITICAL: 9.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:H/SA:L

Problem types

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Product status

Default status

unaffected

Any version

affected

Any version

affected

References

beyondtrustcorp.service-now.com/...sysparm_article=KB0023293

www.beyondtrust.com/trust-center/security-advisories/bt26-02

cve.org (CVE-2026-1731)

nvd.nist.gov (CVE-2026-1731)

Download JSON