Auth bypass in Beyondtrust Privileged Remote Access

CVE-2025-0217

BeyondTrust Privileged Remote Access (PRA) versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools…

Vulnerability class: Broken Authentication

EPSS: 0.001 (20.2th percentile) — read the EPSS interpretation.

Affected products

Beyondtrust Privileged Remote Access — versions 0

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

www.beyondtrust.com/trust-center/security-advisories/bt25-03