Lucene search
K

8 matches found

Metasploit
Metasploit
added 2026/02/25 7:0 p.m.342 views

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) unauthenticated Remote Code Execution

This exploit achieves unauthenticated remote code execution against BeyondTrust Privileged Remote Access PRA and Remote Support RS. The module targets CVE-2026-1731, a direct command injection affecting RS versions 25.3.1 and prior, and PRA versions 24.3.4 and prior. Exploitation occurs with the...

9.9CVSS8AI score0.86091EPSS
Exploits11
Metasploit
Metasploit
added 2025/02/17 6:54 p.m.1496 views

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) unauthenticated Remote Code Execution

This exploit achieves unauthenticated remote code execution against BeyondTrust Privileged Remote Access PRA and Remote Support RS, with the privileges of the site user of the targeted BeyondTrust product site. This exploit targets PRA and RS versions 24.3.1 and below. Module Options msf use...

9.8CVSS9.6AI score0.87991EPSS
Exploits8
The Hacker News
The Hacker News
added 2025/02/14 5:3 a.m.32 views

PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks

Threat actors who were behind the exploitation of a zero-day vulnerability in BeyondTrust Privileged Remote Access PRA and Remote Support RS products in December 2024 likely also exploited a previously unknown SQL injection flaw in PostgreSQL, according to findings from Rapid7. The vulnerability,...

9.8CVSS9.5AI score0.95151EPSS
Exploits16
The Hacker News
The Hacker News
added 2024/12/20 4:30 a.m.17 views

CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a critical security flaw impacting BeyondTrust Privileged Remote Access PRA and Remote Support RS products to the Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The...

9.8CVSS10AI score0.87991EPSS
Exploits8
The Hacker News
The Hacker News
added 2024/12/18 9:15 a.m.15 views

BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products

BeyondTrust has disclosed details of a critical security flaw in Privileged Remote Access PRA and Remote Support RS products that could potentially lead to the execution of arbitrary commands. Privileged Remote Access controls, manages, and audits privileged accounts and credentials, offering zer...

9.8CVSS9.9AI score0.87991EPSS
Exploits8
Circl
Circl
added 2024/12/17 4:32 a.m.8 views

CVE-2024-12356

creationtimestamp| type| source ---|---|--- 2024-12-17 04:32:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113666290051812274 2024-12-17 06:44:55+00:00| seen| https://t.me/cvedetector/13067 2024-12-17 06:47:32+00:00| seen|...

9.8CVSS7.4AI score0.87991EPSS
Exploits8References83
Vulnrichment
Vulnrichment
added 2024/12/17 4:29 a.m.16 views

CVE-2024-12356 Command Injection Vulnerability in Remote Support(RS) & Privileged Remote Access (PRA)

A critical vulnerability has been discovered in Privileged Remote Access PRA and Remote Support RS products which can allow an unauthenticated attacker to inject commands that are run as a site user...

9.8CVSS7.2AI score0.87991EPSS
Exploits8References3
Positive Technologies
Positive Technologies
added 2024/12/16 12:0 a.m.5 views

PT-2024-10058

Name of the Vulnerable Software and Affected Versions BeyondTrust Privileged Remote Access PRA and Remote Support RS versions prior to 24.3.1 PostgreSQL affected versions not specified Description A critical command injection vulnerability exists in BeyondTrust Privileged Remote Access PRA and...

10CVSS8.4AI score0.89472EPSS
Exploits14References213
Rows per page
Query Builder