Telnet

• Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE March 24, 2026

  CVE-2026-32746 is a CVSS 9.8 buffer overflow in GNU InetUtils telnetd that lets an unauthenticated attacker execute code as root before any login prompt appears. No patch yet. If you're running telnetd exposed to the internet, act now.