CVE-2026-9862 – Core Privileged Access Manager (BoKS) autoregistration service command injection vulnerability

​CVE ID :CVE-2026-9862

Published : June 15, 2026, 4:16 p.m. | 2 hours, 12 minutes ago

Description :Fortra’s 
Core Privileged Access Manager (BoKS) contains an OS command injection vulnerability in the boks_autoregisterd service. A remote attacker with network access to the service may be able to cause commands to be executed with the privileges of the service during the autoregistration processing.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… To Read More Visit Read More