91��ɫ

Skip to main content Skip to local navigation

GNU InetUtils telnetd authentication bypass (CVE-2026-24061)

Posted on January 27, 2026

A picture containing text Description automatically generated

Information Security Advisory

A critical remote authentication bypass vulnerability (CVE-2026-24061) has been disclosed in the GNU InetUtils telnetd server, affecting versions 1.9.3 through 2.7.

Severity level
CVSS Score: 9.8/Critical.

Description:
CVE-2026-24061 is an argument injection / authentication-bypass vulnerability in the telnetd component of GNU InetUtils. During Telnet NEW-ENVIRON negotiation, telnetd passes the attacker-controlled USER environment variable directly to the system login program without sanitization. If USER is set to -f root, login treats the session as pre‑authenticated, yielding an unauthenticated root shell. The flaw impacts GNU InetUtils 1.9.3 through 2.7 and is fixed in 2.8.

Affected Versions:
GNU InetUtils package 1.9.3 – 2.7

Impact:
Successful exploitation allows unauthenticated remote attackers to bypass login and obtain root-level command execution on the affected host.

Resolution:
Please Upgrade GNU InetUtils to version 2.8 or later.

Mitigation:
If you cannot upgrade immediately

Disable the telnetd service
Restrict access to Telnet to trusted management networks only

Reference:

Information Security

Contact

IT Client Services at askIT@yorku.ca or 416 736 5800

PRIVACY POLICY | VISIT WWW.YORKU.CA
This email was sent by: 91��ɫ, 4700 Keele Street, Toronto, Ontario M3J 1P3

This email is viewed best in Microsoft Outlook for web

GNU InetUtils telnetd authentication bypass (CVE-2026-24061)

Posted on January 27, 2026

A picture containing text Description automatically generated

Information Security Advisory

A critical remote authentication bypass vulnerability (CVE-2026-24061) has been disclosed in the GNU InetUtils telnetd server, affecting versions 1.9.3 through 2.7.

Severity level
CVSS Score: 9.8/Critical.

Description:
CVE-2026-24061 is an argument injection / authentication-bypass vulnerability in the telnetd component of GNU InetUtils. During Telnet NEW-ENVIRON negotiation, telnetd passes the attacker-controlled USER environment variable directly to the system login program without sanitization. If USER is set to -f root, login treats the session as pre‑authenticated, yielding an unauthenticated root shell. The flaw impacts GNU InetUtils 1.9.3 through 2.7 and is fixed in 2.8.

Affected Versions:
GNU InetUtils package 1.9.3 – 2.7

Impact:
Successful exploitation allows unauthenticated remote attackers to bypass login and obtain root-level command execution on the affected host.

Resolution:
Please Upgrade GNU InetUtils to version 2.8 or later.

Mitigation:
If you cannot upgrade immediately

Disable the telnetd service
Restrict access to Telnet to trusted management networks only

Reference:

Information Security

Contact

IT Client Services at askIT@yorku.ca or 416 736 5800

PRIVACY POLICY | VISIT WWW.YORKU.CA
This email was sent by: 91��ɫ, 4700 Keele Street, Toronto, Ontario M3J 1P3

This email is viewed best in Microsoft Outlook for web