Security News > 2025 > January > CISA orders agencies to patch BeyondTrust bug exploited in attacks

CISA orders agencies to patch BeyondTrust bug exploited in attacks

2025-01-13 20:58

CISA tagged a vulnerability in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks, ordering agencies to secure their systems within three weeks. [...]

News URL

https://www.bleepingcomputer.com/news/security/cisa-orders-agencies-to-patch-beyondtrust-bug-exploited-in-attacks/

#attack #cisa #patch

Related news

CISA orders agencies to patch Linux kernel bug exploited in attacks (source)
CISA: No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing (source)
CISA warns of critical Oracle, Mitel flaws exploited in attacks (source)
CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks (source)
Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks (source)
Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)
CISA tags Microsoft .NET and Apache OFBiz bugs as exploited in attacks (source)
SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN (source)
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Beyondtrust		11	2	5	13	3	23

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.