CVE-2026-1731CVECriticalThreat IntelBEYONDTRUST
CVE-2026-1731: BEYONDTRUST β What You Need to Know
C
Cyber121 Team
Cyber121 Threat Intelligence
April 7, 20263 min read
CVE-2026-1731: BEYONDTRUST ZERO-CLICK RCE FLAW
Overview
CVE-2026-1731 allows unauthenticated remote attackers to execute OS commands on BeyondTrust Remote Support and older Privileged Remote Access versions. This pre-authentication flaw bypasses security controls.
This vulnerability is actively exploited, granting full system control without authentication or user interaction. Immediate action is required.
CVSS Score: 9.8
Affected: BEYONDTRUST
Tags: RCE Β· ZERO-CLICK Β· CRITICAL Β· KEV
Timeline
- JAN 2026 β Vulnerability privately discovered
- FEB 2026 β CVE-2026-1731 publicly disclosed
- FEB 2026 β Active exploitation detected in the wild
- FEB 2026 β BeyondTrust releases security advisories & patches
Mitigation Steps
- Apply Vendor Patches (CRITICAL) β Immediately update BeyondTrust Remote Support and Privileged Remote Access to the latest versions. Refer to BT26-02.
- Network Segmentation (HIGH) β Isolate BeyondTrust appliances from public internet access where possible to limit exposure.
- Monitor for IoCs (HIGH) β Actively scan logs and network traffic for indicators of compromise related to this RCE.
- Review Access Controls (MEDIUM) β Audit and restrict network access to BeyondTrust appliances to authorized personnel only.
Published by Cyber121 Team. Stay ahead of threats at cyber121.com.
C
Cyber121 Team
Cyber121 Threat Intelligence