BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Critical BeyondTrust Flaw Allows RCE

Critical BeyondTrust flaw allows unauthenticated system takeover; patch immediately.

  • BeyondTrust has patched a critical remote code execution flaw (CVE-2026-1731) in its Remote Support and Privileged Remote Access software.
  • The vulnerability, with a CVSS score of 9.9, allows unauthenticated attackers to execute operating system commands on affected systems.
  • Security researcher Harsh Jaiswal noted the flaw was found via AI analysis, with about 11,000 instances, including 8,500 on-prem deployments, exposed online.
  • Users must manually apply patches if not on automatic updates, with some older versions requiring a full upgrade for protection.

On February 6, 2026, BeyondTrust issued a critical security advisory, warning of a severe vulnerability in its widely used Remote Support and Privileged Remote Access products. This flaw, if exploited, could allow attackers to remotely execute commands on systems without any authentication required.

- Advertisement -

The vulnerability, tracked as CVE-2026-1731, is an operating system command injection flaw rated 9.9 on the CVSS scale. BeyondTrust said in its advisory that sending specially crafted requests could let an attacker run commands as the site user.

Consequently, successful exploitation may lead to unauthorized access, data theft, and major service disruptions. The issue impacts Remote Support versions 25.3.1 and prior, as well as Privileged Remote Access versions 24.3.4 and prior.

Patches are available in Remote Support version 25.3.2 and Privileged Remote Access 25.1.1. Meanwhile, the company is urging all self-hosted customers who do not receive automatic updates to apply the fixes manually.

Security researcher Harsh Jaiswal, co-founder of Hacktron AI, said the bug was discovered on January 31, 2026, through AI-enabled analysis. He added that it found about 11,000 instances exposed to the internet, with roughly 8,500 being on-prem deployments that remain vulnerable without the patch.

- Advertisement -

Given that past flaws in these BeyondTrust products have been actively exploited, applying the update is urgently recommended for optimal protection.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Saylor’s ‘Orange Dots’ Signal Fails to Clarify Bitcoin Strategy

Strategy founder Michael Saylor posted a cryptic signal on Sunday, prompting analysts to call...

Crypto’s $2T Crash Awaits BlackRock Shock & FOMO

Bitcoin has stabilized near $60,000 after a downturn erased $2 trillion from the crypto...

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

Must Read

Ethereum Hosting: TOP 10 Companies to Buy Hosting With Ethereum

If you are looking for Ethereum Hosting, you've hit the jackpot. In this article, we will present the 10 Best companies to buy hosting...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading