U.S. CISA Adds BeyondTrust Vulnerability to Known Exploited Vulnerabilities Catalog

The U.S. agency CISA has added a vulnerability affecting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) solutions, referenced under CVE-2026-1731 with a CVSS score of 9.9, to its Known Exploited Vulnerabilities (KEV) catalog. This flaw has been identified as actively exploited. BeyondTrust released security patches this week to address it. No details on the date of addition to the catalog or specific actors or impacts of the exploitations are mentioned.