> TritonInfoSec News
Home / Mar 19, 2026 / Story
0
#4 The Hacker News general March 18, 2026 at 05:06 UTC

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

By [email protected] (The Hacker News)

AI Summary

A critical unauthenticated remote code execution vulnerability (CVE-2026-32746, CVSS 9.8) in GNU InetUtils telnetd remains unpatched and affects telnet daemons listening on port 23. The out-of-bounds write flaw in LINEMODE Set processing allows attackers to gain root privileges without authentication.

Read full article → https://thehackernews.com/2026/03/critical-telnetd…

Relevance score: 88.0/100

# More from March 19

  1. 1
    Ransomware gang exploits Cisco flaw in zero-day attacks since January BleepingComputer
  2. 2
    CISA orders feds to patch Zimbra XSS flaw exploited in attacks BleepingComputer
  3. 3
    Russia-linked hackers use advanced iPhone exploit to target Ukrainians The Record
  4. 5
    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit The Hacker News
  5. 6
    9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors The Hacker News
  6. 7
    Bank software vendor Marquis says more than 670,000 impacted by August breach The Record
  7. 8
    Aura confirms data breach exposing 900,000 marketing contacts BleepingComputer
  8. 9
    ConnectWise patches new flaw allowing ScreenConnect hijacking BleepingComputer
  9. 10
    'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft Dark Reading