CVE-2026-1731

Summary

BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.

Affected Software

VendorProductVersion RangeStatus
BeyondTrustRemote Support(RS) & Privileged Remote Access(PRA)0 <= RS 25.3.1affected
BeyondTrustRemote Support(RS) & Privileged Remote Access(PRA)0 <= PRA 24.3.4affected

Weaknesses

  • CWE-78: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

References