COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-40141

CVE-2026-40141

Severity
critical
Source
NVD · cve
Published
2026-07-06
CVSS
9.9
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-40141
shame 35/100

A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileged Remote Access related to the processing of certain input parameters. Insufficient validation of user-supplied input may allow an authenticated attacker with limited pr

Players implicated

BeyondTrust · vendorprivileged remote access · productremote support · product

Description

A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileged Remote Access related to the processing of certain input parameters. Insufficient validation of user-supplied input may allow an authenticated attacker with limited privileges to access unintended resources or data beyond their authorization scope. Exploitation is restricted to accounts with specific permissions.

Affected FedRAMP products 1 in the catalog

ProductProviderStatusMatch
Secure Remote Access BeyondTrust In Process vendor-exact · 0.90