Today's cybersecurity headlines are brought to you by ThreatPerspective


Ethical Hacking News

BeyondTrust Patches Critical Authentication Flaws in Remote Support and Privileged Remote Access


BeyondTrust has released critical patches for its Remote Support and Privileged Remote Access products, addressing two critical authentication flaws that could allow unauthenticated attackers to bypass access controls and gain unauthorized access to appliances.

  • BeyondTrust has released patches for two critical security flaws in its Remote Support (RS) and Privileged Remote Access (PRA) products.
  • The vulnerabilities, identified through AI-powered security assessments, pose significant risks to organizations using these products.
  • There are four identified vulnerabilities: CVE-2026-40138, CVE-2026-40139, CVE-2026-40140, and CVE-2026-40141.
  • The successful exploitation of two critical vulnerabilities is contingent upon specific authentication configurations being enabled.
  • Organizations using BeyondTrust's RS and PRA products must take immediate action to patch their systems with the latest updates to avoid exploitation.



  • BeyondTrust, a leading provider of remote access solutions, has recently released patches to address two critical security flaws affecting its Remote Support (RS) and Privileged Remote Access (PRA) products. The vulnerabilities, which were identified through ongoing security assessments and assistance from publicly available artificial intelligence (AI) models, pose significant risks to organizations that use these products.

    The first vulnerability, CVE-2026-40138, is a pre-authentication vulnerability in the authentication subsystem of RS and PRA stemming from improper validation of authentication data. This flaw could allow an attacker to bypass access controls and gain unauthorized access to the appliance, including accounts with elevated privileges. The second vulnerability, CVE-2026-40139, is also a pre-authentication vulnerability in the authentication subsystem of RS stemming from improper processing of authentication requests. This flaw could allow an unauthenticated remote attacker to bypass access controls and gain unauthorized access to the appliance.

    In addition to these two critical vulnerabilities, BeyondTrust has also identified a third vulnerability, CVE-2026-40140, which is a pre-authentication vulnerability in the network communication subsystem stemming from insufficient validation of client-supplied input. This flaw could allow an unauthenticated remote attacker to trigger a denial-of-service condition, affecting appliance availability.

    Furthermore, the company has identified a fourth vulnerability, CVE-2026-40141, which exists in a web application component of RS and PRA stemming from insufficient validation of user-supplied input. This flaw could allow an authenticated attacker with limited privileges to access unintended resources or data beyond their authorization scope.

    BeyondTrust emphasized that while these vulnerabilities are critical, the successful exploitation of CVE-2026-40138 and CVE-2026-40139 is contingent upon a specific authentication configuration being enabled. In contrast, the vulnerability in CVE-2026-40141 is restricted to accounts with specific permissions, making it more difficult for an attacker to exploit.

    The company stated that all identified vulnerabilities were discovered internally as part of ongoing security assessments, with assistance using publicly available AI models like Anthropic Claude Opus 4.8 and its own proprietary research tooling.

    To address these critical flaws, BeyondTrust has released patches in the following versions:

    * Remote Support RS 25.3.2 or lower (Fixed in RS 25.3.3 and above)
    * Privileged Remote Access PRA 25.3.2 or lower (Fixed in PRA 25.3.3 and above)

    BeyondTrust noted that these vulnerabilities have not been exploited in the wild, but security flaws in RS and PRA products (CVE-2024-12356 and CVE-2026-1731) have previously come under repeated exploitation to deploy web shells and backdoors.

    As a result of these critical authentication flaws, organizations using BeyondTrust's Remote Support and Privileged Remote Access products must take immediate action to patch their systems with the latest updates. This includes upgrading to versions RS 25.3.3 and above for Remote Support and PRA 25.3.3 and above for Privileged Remote Access.

    In conclusion, these critical authentication flaws in BeyondTrust's Remote Support and Privileged Remote Access products underscore the importance of ongoing security assessments and timely patching. Organizations must prioritize their cybersecurity posture by staying up-to-date on the latest patches and best practices to protect themselves against emerging threats.



    Related Information:
  • https://www.ethicalhackingnews.com/articles/BeyondTrust-Patches-Critical-Authentication-Flaws-in-Remote-Support-and-Privileged-Remote-Access-ehn.shtml

  • https://thehackernews.com/2026/07/beyondtrust-patches-critical-auth.html

  • https://cyberpress.org/beyondtrust-remote-support-privileged-access/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-40138

  • https://www.cvedetails.com/cve/CVE-2026-40138/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-40139

  • https://www.cvedetails.com/cve/CVE-2026-40139/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-40140

  • https://www.cvedetails.com/cve/CVE-2026-40140/

  • https://nvd.nist.gov/vuln/detail/CVE-2026-40141

  • https://www.cvedetails.com/cve/CVE-2026-40141/


  • Published: Tue Jul 7 02:10:52 2026 by llama3.2 3B Q4_K_M













    © Ethical Hacking News . All rights reserved.

    Privacy | Terms of Use | Contact Us