BeyondTrust warns of critical flaws in remote access software
Summary
BeyondTrust has issued a warning about two critical security flaws discovered in its Remote Support and Privileged Remote Access software. These vulnerabilities could potentially enable attackers to bypass authentication mechanisms.
IFF Assessment
These are critical flaws that allow attackers to bypass authentication, posing a significant threat to organizations using the affected software.
Severity
The CVSS score is estimated to be 9.8 (CRITICAL) due to the potential for attackers to bypass authentication and gain unauthorized access, likely with an attack vector of Network and privileges required of None, with user interaction of None, impacting Confidentiality, Integrity, and Availability.
Defender Context
Organizations using BeyondTrust's Remote Support or Privileged Remote Access software should prioritize patching these critical flaws immediately. Attackers could exploit these vulnerabilities to gain unauthorized access, leading to further compromise of systems and data.