A vulnerability identified as very critical has been detected in BeyondTrust Remote Support up to 25.3.2/26.2.0. This affects an unknown function of the component Authentication Request Handler. This manipulation causes improper access controls.

This vulnerability appears as CVE-2026-40139. The attack may be initiated remotely. There is no available exploit.