CVE-2026-1731 fuels ongoing attacks on BeyondTrust remote access products

Attackers are actively exploiting CVE-2026-1731, a critical vulnerability in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA), to deploy tools like VShell, gain persistence, and move laterally within compromised systems. This pre-authentication remote code execution flaw, with a CVSS score of 9.9, allows unauthenticated attackers to run operating system commands remotely, leading to potential full system compromise and data theft.