Free practical cybersecurity guidance for organisations without a security team.
hello@actionsoncyber.com
← Back to Vulnerability Briefs

Critical Access Flaw Found in BeyondTrust Remote Support Tools

A serious security weakness has been found in BeyondTrust Remote Support and Privileged Remote Access software that could let attackers bypass login controls and access systems without permission. This matters because these tools are commonly used to manage remote IT support, and if exploited, could give attackers control over important systems.

07 July 2026

Reference: CVE-2026-40138

1. What is being reported?

The report describes a critical vulnerability in the login system of BeyondTrust's remote support products. Due to improper checking of authentication data, an attacker positioned on the network could bypass normal access controls and gain unauthorized entry, including accounts with high-level privileges. However, this requires a specific authentication setting to be enabled.

2. What this means in plain English

For small organisations using BeyondTrust remote access tools, this means there is a risk that someone could break into your remote support system without needing a password, potentially accessing sensitive information or control functions. This could lead to data breaches or disruption of your IT services.

3. Could this affect a small business?

If your organisation uses BeyondTrust Remote Support or Privileged Remote Access with the specific vulnerable authentication configuration enabled, you could be at risk. If you do not use these products or have different remote access solutions, this vulnerability likely does not affect you.

4. What to do now

  • Check if your organisation uses BeyondTrust Remote Support or Privileged Remote Access software.
  • Ask your IT provider if the vulnerable authentication setting is enabled in your system.
  • Apply any security patches or updates provided by BeyondTrust immediately.
  • Review remote access configurations to ensure they follow best security practices.

5. Ask your IT provider

Can you confirm if our BeyondTrust Remote Support or Privileged Remote Access systems are affected by the recent critical authentication bypass vulnerability, and have all necessary patches been applied?

6. Bottom line

If you use BeyondTrust remote access tools, act quickly to check and update your systems to prevent unauthorised access.

Information based on CISA KEV, NVD, and reputable security news reporting.

Back to Vulnerability Briefs