A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileged Remote Access related to the processing of certain input parameters. Insufficient validation of user-supplied input may allow an authenticated attacker with limited privileges to access unintended resources or data beyond their authorization scope. Exploitation is restricted to accounts with specific permissions.
| Vendor | Product | Versions |
|---|---|---|
| BeyondTrust | Remote Support | 0, 0, 0, 0 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| beyondtrust | privilege remote access | mitre_affected | 90% |
Updated affected versions to include 26.2.0, changed severity to HIGH, and noted that no exploit is available.
Initial creation