importantSYS.SOURCE: The Hacker News• 2026-07-07T10:46:51+05:30
BeyondTrust Patches Critical Authentication Bypass Flaws in Remote Support and Privileged Remote Access
#Vulnerability#Authentication#Remote Access#Patch Management
BeyondTrust released updates to address critical authentication bypass flaws (CVE-2026-40138, CVE-2026-40139, etc.) affecting Remote Support and Privileged Remote Access products. These vulnerabilities could allow unauthenticated attackers to gain unauthorized access to appliances, including accounts with elevated privileges.
BeyondTrust has released updates to address two critical security flaws affecting Remote Support (RS) and Privileged Remote Access (PRA) products that, if successfully exploited, could allow unauthenticated attackers to take control of susceptible devices.
The vulnerabilities are listed below -
CVE-2026-40138 (CVSS score: 9.2) - A pre-authentication vulnerability exists in the
*** END OF TRANSMISSION ***