CVE-2026-40141
High-Severity Vulnerability In Web Application Component of BeyondTrust Remote Support and Privileged Remote Access
CVSS Score
0.0
EPSS Score
0.4%
EPSS Percentile
33th
A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileged Remote Access related to the processing of certain input parameters. Insufficient validation of user-supplied input may allow an authenticated attacker with limited privileges to access unintended resources or data beyond their authorization scope. Exploitation is restricted to accounts with specific permissions.
| CWE | CWE-943 |
| Vendor | beyondtrust |
| Product | remote support |
| Published | Jul 6, 2026 |
| Last Updated | Jul 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for beyondtrust remote support
Be the first to know when new unknown vulnerabilities affecting beyondtrust remote support are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
BeyondTrust / Remote Support
0 ≤ 25.3.2
BeyondTrust / Privilege Remote Access
0 ≤ 25.3.2