A critical OS command injection vulnerability has been disclosed in Fortra’s Core Privileged Access Manager (BoKS), a widely used privileged access management solution. Tracked as CVE-2026-9862 and assigned a CVSS v3.1 score of 9.8, the flaw could allow unauthenticated remote attackers to execute arbitrary commands on affected systems, a worst-case scenario for any enterprise security tool. The vulnerability, […]
The post Critical Fortra Access Manager Flaw Exposes Systems to Command Injection appeared first on Cyber Security News.