Alert icon Keyboard navigation enabled.
Alert icon TAB or Shift+TAB to navigate across. Down ↓ to open menu. ESC to close menu.
Alert icon Down ↓ to select section. Right → to activate. Up ↑ / Down ↓ / Tab to traverse all. ESC to exit.
BeyondTrust
Skip to content Use space or enter to skip.

What can we help you find today?

Instant Results
  • Website Results
  • Technical Documentation

Filter Options

Focus your search

Filtering by

Your recent searches:

Contact Us Chat with Sales Get Support
  • English
  • Deutsch
  • français
  • español
  • 한국어
  • português
  • Home
  • Advisory ID: BT25-03 current page
Link copied

BT25-03

Security Advisories

Advisory ID: BT25-03

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied
  • CVSSv4 score: 7.3
  • CVSSv4 Vector: AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
  • Severity: High
  • Issue Date: 2025-05-05
  • Updated On: 2025-05-05
  • CVE: CVE-2025-0217
  • CWE: CWE-287
  • Synopsis: Privileged Remote Access – Authentication Bypass
  • Impacted Product: Privileged Remote Access

Summary

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

A vulnerability has been discovered in Privileged Remote Access (PRA) that allows a local authenticated attacker to connect to an active ShellJump session.

Details

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

BeyondTrust Privileged Remote Access (PRA) versions prior to 25.1 are vulnerable to a local authentication bypass. A local authenticated attacker can view the connection details of a ShellJump session that was initiated with external tools, allowing unauthorized access to connected sessions.

Mitigation

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

Customers with the “Open Shell Jump Session with an External Tool” option disabled are not affected. Additionally, sessions initiated from Windows systems are not affected.

Affected Versions

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied
Product Version
Privileged Remote Access Prior to 25.1

Fixed Versions

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied
Product Version
Privileged Remote Access 25.1 and later

References

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

https://www.cve.org/cverecord?id=CVE-2025-0217

https://nvd.nist.gov/vuln/detail/CVE-2025-0217

https://beyondtrustcorp.service-now.com/kb_view.do?sysparm_article=KB0022249

Acknowledgements

White chain icon to symbolize the ability to copy a link
Link copied
Check mark to visually show text has been copied

We would like to thank Paul Szabo of the University of Sydney for reporting this vulnerability responsibly.

Keep up with BeyondTrust

Customer Support Get Started
  • LinkedIn
  • X
  • Facebook
  • Instagram
  • Add BeyondTrust as a preferred source on Google
  • Privacy
  • Security
  • Manage Cookies
  • Do Not Sell My Data
  • WEEE Compliance

Copyright © 2003 — 2026 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.

Prefers reduced motion setting detected. Animations will now be reduced as a result.