← Back to blog

BeyondTrust Patches Critical Authentication Bypass Flaws

Two high-severity vulnerabilities in BeyondTrust's Remote Support and Privileged Remote Access products could allow unauthenticated attackers to seize control of affected systems. Organizations using these tools should apply updates immediately.

TL;DR

  • BeyondTrust fixed two critical auth bypass flaws in RS and PRA products.
  • CVE-2026-40138 has a CVSS score of 9.2, posing severe risk.
  • Exploitation could lead to full device takeover without authentication.
  • Organizations must update to patched versions urgently.
  • These vulnerabilities affect remote access tools used by enterprises.

BeyondTrust has released security updates addressing two critical vulnerabilities in its Remote Support (RS) and Privileged Remote Access (PRA) solutions. These flaws, if exploited, could allow unauthenticated attackers to fully compromise affected systems.

One of the vulnerabilities, CVE-2026-40138, carries a CVSS score of 9.2, indicating a severe threat level. The issues reside in the pre-authentication stage, making them particularly dangerous as they can be exploited without needing valid credentials.

Vulnerability Details

  • CVE-2026-40138 affects the pre-authentication mechanism with a CVSS score of 9.2.
  • Successful exploitation allows unauthenticated remote code execution.
  • Both Remote Support and Privileged Remote Access products are impacted.
  • Attackers could gain full administrative control over targeted devices.
  • No user interaction or authentication is required for exploitation.

Recommended Actions

  • Organizations should immediately apply BeyondTrust's latest security patches.
  • Review network logs for any suspicious activity related to RS and PRA services.
  • Restrict external access to BeyondTrust products until patches are applied.
  • Monitor for unauthorized changes or new accounts post-patch deployment.
  • Verify patch installation through BeyondTrust’s official update verification process.

Sources

Sources

Security email updates

One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.

BeyondTrust Patches Critical Authentication Bypass Flaws — Agent Breach Blog | Agent Breach