CVE-2024-12686CISA KEVEPSS p96.0%

CVE-2024-12686BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability

BeyondTrust / Privileged Remote Access (PRA) and Remote Support (RS)

Description

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) contain an OS command injection vulnerability that can be exploited by an attacker with existing administrative privileges to upload a malicious file. Successful exploitation of this vulnerability can allow a remote attacker to execute underlying operating system commands within the context of the site user.

Scoring

EPSS13.79% probability of exploitation · percentile 96.0% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2025-01-13

(incoming)1

TypeTargetConfidenceTier
KEVEntryBeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerabilitykev-cve-2024-126860%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability
CVE
BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability
CVE
CVE-2026-10727
CVE
Ivanti Sentry OS Command Injection Vulnerability
CVE
CVE-2026-8603
CVE
CVE-2025-26645
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.