CISA gives feds 3 days to patch actively exploited BeyondTrust flaw

CISA’s just dropped the hammer, giving federal agencies a tight three-day window to patch a nasty remote code execution flaw in BeyondTrust’s Remote Support and Privileged Remote Access tools—tagged as CVE-2026-1731—which lets unauthenticated attackers inject OS commands and wreak havoc like unauthorized access or data theft. This vulnerability, stemming from a command injection weakness, affects older versions and has already been exploited in the wild, so if you’re running BeyondTrust on-premise, don’t wait for an invitation to update manually. While BeyondTrust swiftly patched their SaaS setups, SMBs and MSPs should take note: this isn’t just a fed problem, as exposed instances could turn your network into an easy target for cybercriminals. To stay ahead, regularly scan for vulnerabilities and apply patches pronto, because ignoring this could lead to the same kind of breaches that hit big players like the U.S. Treasury in the past. And hey, if you’re juggling limited resources, tools like automated workflow integrations can help streamline your security routine without breaking a sweat.

Source: https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-beyondtrust-flaw-within-three-days/