CVE-2024-12356: BeyondTrust Privileged Remote Access (PRA) and Remote
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability . BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) contain a command injection vulnerability, which can allow an unauthenticated attacker to inject commands that are run as a site user.
- CISA KEV-listed (remediation due 2024-12-27)
- EPSS 93.9% (99.9% percentile)