BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA

Summary

BeyondTrust has released patches for two critical vulnerabilities in its Remote Support and Privileged Remote Access products. These flaws, if exploited, could enable unauthenticated attackers to gain control over vulnerable devices.

IFF Assessment

FOE

The discovery of critical authentication bypass vulnerabilities allows unauthenticated attackers to gain control, posing a significant threat to organizations using the affected products.

Severity

9.2 Critical

The CVSS score of 9.2 indicates a critical severity, stemming from a pre-authentication vulnerability allowing unauthenticated attackers to gain control of susceptible devices.

Defender Context

Organizations using BeyondTrust Remote Support or Privileged Remote Access should prioritize applying the available patches immediately. These vulnerabilities represent a significant risk, as they allow for unauthenticated access and full control of affected systems.

Read Full Story →