{"vulnerability": "cve-2026-40138", "sightings": [{"uuid": "516f6042-18ad-4b5d-bba2-a5ae56b8506b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpymjyjtts2y", "content": "CVE-2026-40138\nA security flaw in BeyondTrust Remote Support and Privileged Remote Access allows an attacker to bypass access controls and gain unauthorized access to accounts with elevated privileges. This can happen if an\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-06T17:30:04.394768Z"}, {"uuid": "100c601f-86d6-43d5-8933-220d2b163900", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpyn7p5zhe2z", "content": "CVE-2026-40138 - Critical Pre-Authentication Vulnerability in BeyondTrust Remote Support and Privileged Remote Access\nCVE ID : CVE-2026-40138\n \n Published : July 6, 2026, 4:12 p.m. | 1\u00a0hour, 1\u00a0minute ago\n \n Description : A critical pre-authentication vulnerability exists in th...", "creation_timestamp": "2026-07-06T17:42:12.640539Z"}, {"uuid": "5a480092-b257-46c5-8f1e-1177d8e0301f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40138", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mpynkx35vt2f", "content": "BeyondTrust patched a critical pre-authentication vulnerability (CVE-2026-40138, CVE-2026-40139, CVE-2026-40140). Update Remote Support instances now.\n\n#BeyondTrust #Vulnerability #CVE202640138 #CyberSecurity #RemoteSupport", "creation_timestamp": "2026-07-06T17:48:42.453509Z"}, {"uuid": "f3d34633-263f-4860-ac7a-8e7a77ba0081", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40138", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/116874512026637035", "content": "\u203c\ufe0f New Dark Web Informer Blog Post!\nTitle: Pre-Auth Access-Control Bypass in BeyondTrust Remote Support and PRA (CVE-2026-40138)\nLink: https://darkwebinformer.com/pre-auth-access-control-bypass-in-beyondtrust-remote-support-and-pra-cve-2026-40138/", "creation_timestamp": "2026-07-06T18:45:26.331307Z"}]}