Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/05/08 9:9 a.m.12 views

Astra Linux – Vulnerability in inetutils

In GNU inetutils via telnetd in version 2.7, privilege escalation is possible, which can be exploited by abusing the systemd service credentials support added to the login1 implementation of util-linux in version 2.40. This issue relates to client control over the CREDENTIALSDIRECTORY environment...

7.8CVSS7.3AI score0.00373EPSS
Exploits4References3
GithubExploit
GithubExploit
added 2026/02/28 1:28 a.m.238 views

Exploit for CVE-2026-28372

CVE-2026-28372 — GNU inetutils telnetd Privilege Escalation Po...

7.4CVSS5.9AI score0.00373EPSS
Exploits4
GithubExploit
GithubExploit
added 2026/02/27 7:54 p.m.196 views

Exploit for CVE-2026-28372

CVE-2026-28372 — GNU inetutils telnetd Privilege Escalation Po...

7.4CVSS6AI score0.00373EPSS
Exploits4
EUVD
EUVD
added 2026/02/27 6:31 a.m.7 views

EUVD-2026-9000

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.4CVSS5.4AI score0.00373EPSS
Exploits4References5
OSV
OSV
added 2026/02/27 6:18 a.m.4 views

UBUNTU-CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.8CVSS7.3AI score0.00373EPSS
Exploits4References7
NVD
NVD
added 2026/02/27 6:18 a.m.5 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.8CVSS0.00373EPSS
Exploits4References9
Cvelist
Cvelist
added 2026/02/27 5:28 a.m.27 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.4CVSS0.00373EPSS
Exploits4References4
ATTACKERKB
ATTACKERKB
added 2026/02/27 5:28 a.m.4 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.8CVSS5.5AI score0.00373EPSS
Exploits4References5
CVE
CVE
added 2026/02/27 5:28 a.m.65 views

CVE-2026-28372

CVE-2026-28372 affects telnetd in GNU inetutils up to version 2.7. The root cause is that login(1) in util-linux 2.40 added systemd service credentials support, enabling a local unprivileged user to influence the CREDENTIALS_DIRECTORY environment variable and create a login.noauth file, which can...

7.8CVSS5.5AI score0.00373EPSS
Exploits4References9Affected Software1
OSV
OSV
added 2026/02/27 5:28 a.m.4 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.4CVSS5.9AI score0.00373EPSS
Exploits4References11
Vulnrichment
Vulnrichment
added 2026/02/27 5:28 a.m.2 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.4CVSS5.9AI score0.00373EPSS
Exploits4References4
UbuntuCve
UbuntuCve
added 2026/02/27 12:0 a.m.6 views

CVE-2026-28372

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login1 implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALSDIRECTORY environment variable, and require...

7.8CVSS7.2AI score0.00373EPSS
Exploits4References5
Positive Technologies
Positive Technologies
added 2026/02/27 12:0 a.m.6 views

PT-2026-22300

Name of the Vulnerable Software and Affected Versions GNU inetutils versions through 2.7 Description A privilege escalation issue exists in telnetd within GNU inetutils. The issue stems from improper handling of the CREDENTIALS DIRECTORY environment variable, introduced with systemd service...

7.8CVSS5.9AI score0.00373EPSS
Exploits4References31
Rows per page
Query Builder