CVE-2026-1731

Awaiting Analysis

Published: 06 Feb 2026, 21:49

Last modified:14 Feb 2026, 05:20

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.9 CRITICAL

v4.0 (cve.org)

EPSS Score

61.38% CRITICAL

61% probability +57.16%

KEV

Listed

CISA

1 listing

Ransomware

No reports

Public exploits

1 found

Dark Web

Not detected

Timeline

06 Feb 2026, 21:49

Published

Vulnerability first disclosed

13 Feb 2026, 00:00

Added to CISA KEV

BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability

14 Feb 2026, 05:20

Last Modified

Vulnerability information updated

16 Feb 2026, 00:00

CISA Remediation Due

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

CVSS Metrics

EPSS Trends

Weaknesses (CWE)

KEV Details

Exploits (1)

Affected Systems

References (5)