Exploit for Argument Injection in Gnu Inetutils_A7C4159E-E3CD-5EBB-972E-25FCDE265C18

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

--- 🧨 Overview This repository contains a Proof‑of‑Concept exploit for GNU Inetutils telnetd remote authentication bypass vulnerability. The issue arises because telnetd improperly sanitizes the USER environment variable received via Telnet NEW‑ENVIRON...

Visit Original Source

Basic Information

ID A7C4159E-E3CD-5EBB-972E-25FCDE265C18

Published Feb 18, 2026 at 08:52

Modified Feb 18, 2026 at 08:56

{
    "lastseen": "2026-02-18T08:58:37",
    "description": "--- \ud83e\udde8 Overview This repository contains a Proof\u2011of\u2011Concept exploit for GNU Inetutils telnetd remote authentication bypass vulnerability. The issue arises because telnetd improperly sanitizes the USER environment variable received via Telnet NEW\u2011ENVIRON...",
    "published": "2026-02-18T08:52:25",
    "modified": "2026-02-18T08:56:57",
    "type": "githubexploit",
    "title": "Exploit for Argument Injection in Gnu Inetutils",
    "source": "",
    "references": "",
    "id": "A7C4159E-E3CD-5EBB-972E-25FCDE265C18",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2026-24061"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/mbanyamer/CVE-2026-24061-GNU-Inetutils-telnetd-Remote-Authentication-Bypass-Root-Shell-",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply