Vulnerability Description
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Beyondtrust | Privileged Remote Access | < 25.1 |
| Beyondtrust | Remote Support | < 25.3.2 |
Related Weaknesses (CWE)
References
- https://beyondtrustcorp.service-now.com/csm?id=csm_kb_article&sysparm_article=KBPermissions Required
- https://www.beyondtrust.com/trust-center/security-advisories/bt26-02Vendor Advisory
- https://github.com/win3zz/CVE-2026-1731ExploitThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-US Government Resource
- https://www.greynoise.io/blog/reconnaissance-beyondtrust-rce-cve-2026-1731Third Party Advisory
FAQ
What is CVE-2026-1731?
CVE-2026-1731 is a vulnerability with a CVSS score of 9.8 (CRITICAL). BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted req...
How severe is CVE-2026-1731?
CVE-2026-1731 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2026-1731?
Check the references section above for vendor advisories and patch information. Affected products include: Beyondtrust Privileged Remote Access, Beyondtrust Remote Support.