PatchSiren cyber security CVE debrief
CVE-2026-9862 Fortra CVE debrief
CVE-2026-9862 is a critical OS command injection vulnerability in Fortra's Core Privileged Access Manager (BoKS). The vulnerability exists in the boks_autoregisterd service and allows a remote attacker with network access to execute commands with the privileges of the service during autoregistration processing. The vulnerability has a CVSS score of 9.8 and is considered critical.
- Vendor
- Fortra
- Product
- Core Privileged Access Manager (BoKS)
- CVSS
- CRITICAL 9.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Administrators and users of Fortra's Core Privileged Access Manager (BoKS) should be aware of this vulnerability and take immediate action to mitigate the risk.
Technical summary
The vulnerability is caused by an OS command injection in the boks_autoregisterd service of Fortra's Core Privileged Access Manager (BoKS). This allows a remote attacker to execute commands with the privileges of the service during autoregistration processing.
Defensive priority
High
Recommended defensive actions
- Apply the patch or update provided by Fortra to fix the vulnerability.
- Restrict access to the boks_autoregisterd service to only trusted users and networks.
- Monitor the system for suspicious activity and implement additional security measures to detect and prevent exploitation.
Evidence notes
The CVE record and NVD detail can be found at [cve-org] and [nvd], respectively. Additional information can be found in the Fortra security advisory at [ref-4].
Official resources
-
CVE-2026-9862 CVE record
CVE.org
-
CVE-2026-9862 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
df4dee71-de3a-4139-9588-11b62fe6c0ff
CVE-2026-9862 was published on 2026-06-15T16:16:35.357Z and has not been modified since then.