VIR Vulnerability Intelligence Relay

CVE-2026-24061

unknown KEV
Published 2026-01-26 ยท Modified 2026-01-26
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
โ€”
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
2.5

Description

GNU InetUtils contains an argument injection vulnerability in telnetd that could allow for remote authentication bypass via a "-f root" value for the USER environment variable.

CISA KEV

Vendor
GNU
Product
InetUtils
Due date
2026-02-16

Predictions

Exploit likelihood
99%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27
{Vendor advisory: cisa-kev โ€” This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://cgit.git.savannah.gnu.org/cgit/inetutils.git ; https://codeberg.org/inetutils/inetutils/commit/ccba9f748aa8d50a38d7748e2e60362edd6a32cc; https://codeberg.org/inetutils/inetutils/commit/fd702c02497b2f398e739e3119bed0b23dd7aa7b ; https://nvd.nist.gov/vuln/detail/CVE-2026-24061}

Exploits

Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.

Exploit-DB

EDB-52524 local linux
aliguliyev ยท 2026-04-29

GNU InetUtils 2.6 - Telnetd Remote Privilege Escalation

Source code queued for fetch โ€” refresh in a moment.

Metasploit modules

exploit_linux/telnet/gnu_inetutils_auth_bypass rank 500
GNU Inetutils Telnet Authentication Bypass Exploit CVE-2026-24061
Source fetch failed: fetch_error โ€” view the original via the link above.

OS impact
debian Debian Fixed 5 releases
VersionStatusFixed in
trixie Fixed 2:2.6-3+deb13u1
sid Fixed 2:2.7-2
forky Fixed 2:2.7-2
bullseye Fixed 2:2.0-1+deb11u4
bookworm Fixed 2:2.4-2+deb12u2

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.