Home / Latest

Photo of cryptocurrency, office team, 3D printer
Image: via d.techtimes.com
Latest

BeyondTrust Warns of Critical PAM Bypass Flaws

WireByte Staff · July 7, 2026

BeyondTrust has disclosed four vulnerabilities in its Remote Support and Privileged Remote Access products, including two critical pre-authentication bypass flaws rated 9.2 on CVSS v4. Self-hosted customers on version 25.3.2 or earlier are exposed and urged to patch immediately.

Key points

  • BeyondTrust, a leading provider of Privileged Access Management (PAM) solutions, disclosed four vulnerabilities in its Remote Support (RS) and Privileged Remote Access (PRA) products on Tuesday.
  • The vulnerabilities, including two critical pre-authentication bypass flaws rated 9.2 on CVSS v4, affect self-hosted customers on version 25.3.2 or earlier who are not enrolled in automatic updates.
  • Cloud-hosted customers were patched silently on April 21, 2026, but self-hosted customers remain exposed and are urged to patch immediately to avoid administrative control of all managed systems.
  • A CVSS 9.2 pre-authentication bypass in a PAM gateway inherits the trust of every managed system, making a single successful exploit attempt grant access to all systems.
  • The vulnerability is not just about the flaws themselves, but also the critical role that PAM platforms like BeyondTrust play in an organization's trust hierarchy.

BeyondTrust, a leading provider of Privileged Access Management (PAM) solutions, has disclosed four vulnerabilities in its Remote Support (RS) and Privileged Remote Access (PRA) products. The vulnerabilities, including two critical pre-authentication bypass flaws rated 9.2 on CVSS v4, affect self-hosted customers on version 25.3.2 or earlier who are not enrolled in automatic updates.

The urgency of the situation is not just about the flaws themselves, but also the critical role that PAM platforms like BeyondTrust play in an organization's trust hierarchy. A CVSS 9.2 pre-authentication bypass in a standard web application is a serious problem bounded by that application's data. The same bypass in a PAM gateway, however, inherits the trust of every managed system, making a single successful exploit attempt grant access to all systems.

Cloud-hosted customers were patched silently on April 21, 2026, but self-hosted customers remain exposed and are urged to patch immediately to avoid administrative control of all managed systems. The vulnerability highlights the importance of timely patching and updates in maintaining the security of critical systems.

As the incident unfolds, it remains to be seen how organizations will respond to the vulnerability and what measures they will take to mitigate the risk. One thing is certain, however, the vulnerability serves as a stark reminder of the importance of robust security measures in protecting against sophisticated threats.

Sources

WireByte Staff — Editorial Team

The WireByte editorial team synthesises technology news from multiple primary sources, verifies the facts, and links every source. Articles are produced with AI assistance and reviewed under our editorial policy.