GCVE - cpe:2.3:a:beyondtrust:remote_support:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:beyondtrust:remote_support:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Beyondtrust (`673561b0-1cd3-565b-80ef-06b287294740`)
Product	Remote Support (`e6786d43-d13c-5fd1-9fe9-30ec65ffcc17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-1731`	vulnerable	2026-06-03 15:14:45.223194	Remote code execution vulnerability in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability. By sending specially crafted requests, an unauthenticated remote attacker may be able to execute operating system commands in the context of the site user. Published: 2026-02-06T21:49:20.844Z Updated: 2026-02-26T15:04:15.451Z Open on db.gcve.eu Reference links https://beyondtrustcorp.service-now.com/csm?id=csm_kb_article&sysparm_article=KB0023293 https://www.beyondtrust.com/trust-center/security-advisories/bt26-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5309`	vulnerable	2026-06-03 15:06:27.506760	Remote Support & Privileged Remote Access server side template injection The chat feature within Remote Support (RS) and Privileged Remote Access (PRA) is vulnerable to a Server-Side Template Injection vulnerability which can lead to remote code execution. Published: 2025-06-16T16:06:14.413Z Updated: 2026-02-26T17:50:35.531Z Open on db.gcve.eu Reference links https://www.beyondtrust.com/trust-center/security-advisories/bt25-04	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-12686`	vulnerable	2026-06-03 14:54:22.975163	Command Injection vulnerability in Remote Support(RS) & Privilege Remote Access (PRA) MEDIUM (6.6) A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow an attacker with existing administrative privileges to inject commands and run as a site user. Published: 2024-12-18T20:23:57.909Z Updated: 2025-10-21T22:55:34.086Z Open on db.gcve.eu Reference links https://nvd.nist.gov/vuln/detail/CVE-2024-12686 https://www.beyondtrust.com/trust-center/security-advisories/bt24-11	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-12356`	vulnerable	2026-06-03 14:54:16.190260	Command Injection Vulnerability in Remote Support(RS) & Privileged Remote Access (PRA) CRITICAL (9.8) A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user. Published: 2024-12-17T04:29:07.883Z Updated: 2025-10-21T22:55:34.239Z Open on db.gcve.eu Reference links https://www.cve.org/CVERecord?id=CVE-2024-12356 https://nvd.nist.gov/vuln/detail/CVE-2024-12356 https://www.beyondtrust.com/trust-center/security-advisories/bt24-10	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.