Beyondtrust

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-1731 1Beyondtrust 2Privileged Remote Access Remote Support Feb 17, 2026 Feb 6, 2026 9.9 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenti...Show more BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.Show less
CVE-2025-6250 1Beyondtrust 1Privilege Management For Windows Aug 4, 2025 Jul 28, 2025 7.1 HIGH· v4 6.7 MEDIUM· v3 N/A· v2 Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to...Show more Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions.Show less
CVE-2025-2297 1Beyondtrust 1Privilege Management For Windows Aug 4, 2025 Jul 28, 2025 7.2 HIGH· v4 7.8 HIGH· v3 N/A· v2 Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitimate challenge response codes into the local user registry under certain conditions. This allows users with the...Show more Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitimate challenge response codes into the local user registry under certain conditions. This allows users with the ability to edit their user profile files to elevate their privileges to administrator.Show less
CVE-2025-5309 1Beyondtrust 2Privileged Remote Access Remote Support Aug 21, 2025 Jun 16, 2025 8.6 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 The chat feature within Remote Support (RS) and Privileged Remote Access (PRA) is vulnerable to a Server-Side Template Injection vulnerability which can lead to remote code execution.
CVE-2025-0217 1Beyondtrust 1Privileged Remote Access Nov 3, 2025 May 5, 2025 7.3 HIGH· v4 7.8 HIGH· v3 N/A· v2 BeyondTrust Privileged Remote Access (PRA) versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated...Show more BeyondTrust Privileged Remote Access (PRA) versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions.Show less
CVE-2025-0889 1Beyondtrust 1Privilege Management For Windows Jul 31, 2025 Feb 26, 2025 7.2 HIGH· v4 7.8 HIGH· v3 N/A· v2 Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM objects under certain circumstances where an EPM policy allows...Show more Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM objects under certain circumstances where an EPM policy allows for automatic privilege elevation of a user process.Show less
CVE-2024-12686 1Beyondtrust 2Privileged Remote Access Remote Support Oct 24, 2025 Dec 18, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow an attacker with existing administrative privileges to inject commands and run as a site user.
CVE-2024-12356 1Beyondtrust 2Privileged Remote Access Remote Support Oct 24, 2025 Dec 17, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.
CVE-2024-9110 1Beyondtrust 1Privileged Identity Feb 11, 2025 Oct 30, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 A medium severity vulnerability has been identified within Privileged Identity which can allow an attacker to perform reflected cross-site scripting attacks.
CVE-2024-5813 1Beyondtrust 1Beyondinsight Password Safe Feb 11, 2025 Jun 11, 2024 N/A· v4 4.9 MEDIUM· v3 N/A· v2 A medium severity vulnerability in BIPS has been identified where an authenticated attacker with high privileges can access the SSH private keys via an information leak in the server response.
CVE-2024-5812 1Beyondtrust 1Beyondinsight Password Safe Feb 11, 2025 Jun 11, 2024 N/A· v4 2.7 LOW· v3 N/A· v2 A low severity vulnerability in BIPS has been identified where an attacker with high privileges or a compromised high privilege account can overwrite Read-Only smart rules via a specially crafted API request.
CVE-2024-4220 1Beyondtrust 1Beyondinsight Nov 21, 2024 Jun 4, 2024 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Prior to 23.1, an information disclosure vulnerability exists within BeyondInsight which can allow an attacker to enumerate usernames.
CVE-2024-4219 1Beyondtrust 1Beyondinsight Nov 21, 2024 Jun 4, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors within BeyondInsight, resulting in a server-side request forgery vulnerability.
CVE-2024-4018 1Beyondtrust 1U Series Appliance Mar 10, 2025 Apr 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit (local appliance api modules) allows Privilege Escalation.This issue affects U-Series Appliance: from 3.4 before 4.0.3.
CVE-2024-4017 1Beyondtrust 1U Series Appliance Mar 6, 2025 Apr 19, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper Privilege Management vulnerability in BeyondTrust U-Series Appliance on Windows, 64 bit (filesystem modules) allows DLL Side-Loading.This issue affects U-Series Appliance: from 3.4 before 4.0.3.
CVE-2024-25083 1Beyondtrust 1Privilege Management For Windows Mar 27, 2025 Feb 16, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low-privileged user initiates a repair, there is an attack vector through which the user is able to execute any program with el...Show more An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low-privileged user initiates a repair, there is an attack vector through which the user is able to execute any program with elevated privileges.Show less
CVE-2024-1591 1Beyondtrust 1Privilege Management For Windows Feb 7, 2025 Feb 16, 2024 N/A· v4 3.3 LOW· v3 N/A· v2 Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues...Show more Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the policy and potentially find configuration issues.Show less
CVE-2023-49944 1Beyondtrust 1Privilege Management For Windows Nov 21, 2024 Dec 25, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 The Challenge Response feature of BeyondTrust Privilege Management for Windows (PMfW) before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted shared...Show more The Challenge Response feature of BeyondTrust Privilege Management for Windows (PMfW) before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted shared key in process memory. The threat is mitigated by the Agent Protection feature.Show less
CVE-2020-28369 1Beyondtrust 1Privilege Management For Windows Nov 21, 2024 Dec 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp.
CVE-2020-12614 1Beyondtrust 1Privilege Management For Windows Nov 21, 2024 Dec 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. If the publisher criteria is selected, it defines the name of a publisher that must be present in the certificate (and also requires th...Show more An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. If the publisher criteria is selected, it defines the name of a publisher that must be present in the certificate (and also requires that the certificate is valid). If an Add Admin token is protected by this criteria, it can be leveraged by a malicious actor to achieve Elevation of Privileges from standard user to administrator.Show less

12 Next