Beyondtrust: community verdicts
3 notable / known-exploited Beyondtrust CVEs the community has triaged.
- CVE-2021-3156HIGH 7.8KEVEPSS 99%
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
- CVE-2024-12356CRIT 9.8KEVEPSS 88%
A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.
- CVE-2026-1731CRIT 9.8KEVEPSS 86%
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user.