BeyondTrust Privileged Remote Access is a secure remote access solution that enables IT administrators and security professionals to control, audit, and manage privileged access to critical systems by authorized employees and third-party vendors. It minimizes security risks associated with remote access by implementing granular role-based access controls and providing real-time monitoring, logging, and auditing capabilities. The solution integrates with various IT systems and supports multi-factor authentication, ensuring that only authorized users can access resources.

BeyondTrust Privileged Remote Access Client

BeyondTrust Remote Support is a secure remote access solution that enables IT support teams to provide assistance to users and manage devices across multiple platforms. It offers robust security features, including granular access control and session monitoring, to ensure compliance with industry standards. The platform is designed for efficient troubleshooting and enhanced customer support experiences.

BeyondTrust Remote Support Client

BeyondTrust Privileged Remote Access

BeyondTrust Remote Support

The chat feature within Remote Support (RS) and Privileged Remote Access (PRA) is vulnerable to a Server-Side Template Injection vulnerability which can lead to remote code execution.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2024-12356	CRITICAL	9.8	BeyondTrust Privileged Remote Access Client	cpe:2.3:a:beyondtrust:remote_support	Yes	Yes	Dec 17, 2024
CVE-2025-5309	HIGH	8.6	BeyondTrust Privileged Remote Access Client	cpe:2.3:a:beyondtrust:privileged_remote_access	No	Yes	Jun 16, 2025
CVE-2023-23632	HIGH	7.8	BeyondTrust Privileged Remote Access Client	cpe:2.3:a:beyondtrust:privileged_remote_access	No	Yes	Oct 12, 2023
CVE-2025-0217	HIGH	7.3	BeyondTrust Privileged Remote Access Client	cpe:2.3:a:beyondtrust:privileged_remote_access	No	Yes	May 05, 2025
CVE-2024-12686	HIGH	7.2	BeyondTrust Privileged Remote Access Client	cpe:2.3:a:beyondtrust:privileged_remote_access	Yes	Yes	Dec 18, 2024

CVE-2025-5309:
BeyondTrust Privileged Remote Access Client vulnerability analysis and mitigation

8.6

Related BeyondTrust Privileged Remote Access Client vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-5309: BeyondTrust Privileged Remote Access Client vulnerability analysis and mitigation