CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

279 matches found

Debian•added 2026/01/22 7:19 a.m.•7 views

[SECURITY] [DSA 6106-1] inetutils security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6106-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 22, 2026 https://www.debian.org/security/faq -...

9.8CVSS5.5AI score0.98871EPSS

Exploits59

VulnCheck KEV•added 2026/01/22 12:0 a.m.•2 views

VulnCheck KEV: CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS5.8AI score0.98871EPSS

In wildExploits59References87

Tenable Nessus•added 2026/01/22 12:0 a.m.•4 views

Debian dsa-6106 : inetutils - security update

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6106 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6106-1 [email protected] https://www.debian.org/security/...

9.8CVSS7.2AI score0.98871EPSS

Exploits59References5

CNVD•added 2026/01/22 12:0 a.m.•12 views

GNU InetUtils Telnetd Remote Authentication Bypass Vulnerability

GNU InetUtils telnetd is a telnet service daemon in the GNU InetUtils suite that listens on TCP port 23 and provides clients with plaintext terminal access based on the Telnet protocol. A remote authentication bypass vulnerability exists in GNU InetUtils Telnetd, which can be exploited to bypass...

9.8CVSS5.9AI score0.98871EPSS

Exploits59References1

OpenVAS•added 2026/01/22 12:0 a.m.•9 views

Debian: Security Advisory (DSA-6106-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.1AI score0.98871EPSS

Exploits59References4

OSV•added 2026/01/22 12:0 a.m.•3 views

DSA-6106-1 inetutils - security update

Bulletin has no description...

9.8CVSS5AI score0.98871EPSS

Exploits59

NCSC•added 2026/01/21 2:15 p.m.•5 views

Vulnerability fixed in GNU Inetutils telnetd

Security researchers have found a a vulnerability in Inetutils telnetd version 2.7. This vulnerability has been present since version 1.9.3 that came out in 2015, according to the researchers. The vulnerability is in the way the telnetd service handles the USER environment variable. By setting th...

9.8CVSS5.7AI score0.98871EPSS

Exploits59References4

NVD•added 2026/01/21 7:16 a.m.•17 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS0.98871EPSS

Exploits59References13

OSV•added 2026/01/21 7:16 a.m.•1 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS5.8AI score0.98871EPSS

Exploits59References13

UbuntuCve•added 2026/01/21 7:16 a.m.•7 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS7.3AI score0.98871EPSS

Exploits59References8

OSV•added 2026/01/21 7:16 a.m.•2 views

UBUNTU-CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS7.4AI score0.98871EPSS

Exploits59References9

ATTACKERKB•added 2026/01/21 6:42 a.m.•1 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS5.4AI score0.98871EPSS

In wildExploits59References7Affected Software1

Cvelist•added 2026/01/21 6:42 a.m.•28 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS0.98871EPSS

Exploits59References8

Vulnrichment•added 2026/01/21 6:42 a.m.•3 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS5.5AI score0.98871EPSS

Exploits59References8

CVE•added 2026/01/21 6:42 a.m.•431 views

CVE-2026-24061

Summary: CVE-2026-24061 affects GNU Inetutils’ telnetd (up to 2.7) and enables remote authentication bypass by setting the USER environment variable to "-f root". This can lead to unauthorized root access if telnetd is reachable. What’s affected (per provided docs): inetutils telnetd; GNU Inetuti...

9.8CVSS5.5AI score0.98871EPSS

In wildExploits59References13Affected Software1

Debian CVE•added 2026/01/21 6:42 a.m.•6 views

CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS8.7AI score0.98871EPSS

Exploits59

CNNVD•added 2026/01/21 12:0 a.m.•3 views

GNU Inetutils 参数注入漏洞

9.8CVSS7.4AI score0.98871EPSS

Exploits59References7

Circl•added 2026/01/20 9:0 p.m.•1 views

GCVE-1-2026-0007

creationtimestamp| type| source ---|---|--- 2026-01-20 21:00:27+00:00| seen| https://bsky.app/profile/adulau.infosec.exchange.ap.brid.gy/post/3mcv2ed5ci5s2 2026-01-20 21:09:51+00:00| seen| https://infosec.exchange/@adulau/115929431973189919 2026-01-20 21:12:45+00:00| seen|...

7.3AI score

Exploits0References14

Positive Technologies•added 2026/01/20 12:0 a.m.•6 views

PT-2026-3756

Name of the Vulnerable Software and Affected Versions GNU Inetutils versions 1.9.3 through 2.7 Description GNU Inetutils telnetd is vulnerable to a remote authentication bypass. An attacker can exploit this flaw by manipulating the USER environment variable, specifically by setting it to "-f root...

10CVSS7.9AI score0.98871EPSS

Exploits59References230