SecAlerts
CVE ListPricingSign Up
BeyondTrust logo

BeyondTrust

Security Risk Profile

71
/100
high

Security Risk Score

Comprehensive risk assessment based on 41 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from October 26, 2017 to present

41
Total CVEs
26
Critical+High
8
Exploited
21
Unpatched

Threat Assessment

Avg CVSS
7.7
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
21
Critical/High
Risk Level
71/100
high
⚠️ 8 Active Exploits 4 Zero-Days

Severity Distribution

Critical
6
High
20
Medium
6
Low
2

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
9

Age Distribution

Common Weaknesses (CWE)

1
Command Injection
4
2
Infoleak
3
3
OS Command Injection
2
4
SQL Injection
2
5
XSS
2

Most Affected Products

1. BeyondTrust Remote Support24
2. BeyondTrust Privileged Remote Access19
3. BeyondTrust Privilege Management for Windows17
4. IBM Security Guardium6
5. BeyondTrust Beyondinsight Password Safe4

Recent Vulnerabilities

See more →
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-beyondtrust-flaw-within-three-days/
unknown

CISA gives feds 3 days to patch actively exploited BeyondTrust flaw

2/16/2026⚠ Exploited🔧 No Patch
https://reddit.com/r/sysadmin/comments/1r3wb9v/beyondtrust_gets_hit_again_preauth_rce_in_remote/
unknown

BeyondTrust Gets Hit Again: Pre-Auth RCE in Remote Support Tools

2/13/2026🔧 No Patch
https://www.bleepingcomputer.com/news/security/critical-beyondtrust-rce-flaw-now-exploited-in-attacks-patch-now/
unknown

Critical BeyondTrust RCE flaw now exploited in attacks, patch now

2/12/2026⚠ Exploited⚡ Zero-Day🔧 No Patch
https://www.bleepingcomputer.com/news/security/beyondtrust-warns-of-critical-rce-flaw-in-remote-support-software/
unknown

BeyondTrust warns of critical RCE flaw in remote support software

2/9/2026🔧 No Patch
CVE-2026-1731
CVSS 9.9critical

BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability

2/6/2026⚠ Exploited
CVE-2026-1232
CVSS 6.8medium

Anti-Tamper Bypass in BeyondTrust Privilege Management for Windows

2/2/2026🔧 No Patch
CVE-2025-62159
CVSS 8.7high

External Secrets Operator's BeyondTrust Provider has Insecure Secret Retrieval

10/10/2025🔧 No Patch
CVE-2025-6250
CVSS 7.1high

Privilege Management for Windows - Elevation of Privilege

7/28/2025🔧 No Patch
CVE-2025-2297
CVSS 7.8high

Privilege Management for Windows - Elevation of Privilege

7/28/2025🔧 No Patch
https://www.bleepingcomputer.com/news/security/beyondtrust-warns-of-pre-auth-rce-in-remote-support-software/
unknown

BeyondTrust warns of pre-auth RCE in Remote Support software

6/18/2025🔧 No Patch

Monitor BeyondTrust in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.