High Threat Security Alert (A26-03-21): Vulnerability in GNU Inetutils telnetd

Description:

GNU Inetutils telnetd has published a security bulletin for the vulnerability. An attacker could exploit this vulnerability by sending specially crafted requests to an affected system.

Reports indicated that a critical remote code execution vulnerability (CVE-2026-32746) is at high risk of exploitation. System administrators are advised to follow the recommendations provided by the vendors to mitigate the elevated risk of cyber attacks.

Affected Systems:

• GNU Inetutils telnetd prior to version 2.7

Impact:

Successful exploitation of the vulnerability could lead to remote code execution and elevation of privilege on an affected system.

Recommendation:

System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

More Information:

• https://lists.gnu.org/archive/html/bug-inetutils/2026-03/msg00031.html
• https://dreamgroup.com/vulnerability-advisory-pre-auth-remote-code-execution-via-buffer-overflow-in-telnetd-linemode-slc-handler
• https://nvd.nist.gov/vuln/detail/CVE-2026-32746
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32746