{"id":224953,"date":"2026-03-18T01:07:00","date_gmt":"2026-03-18T05:07:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/18\/critical-unpatched-telnetd-flaw-cve-2026-32746-enables-unauthenticated-root-rce\/"},"modified":"2026-03-18T09:30:11","modified_gmt":"2026-03-18T13:30:11","slug":"critical-unpatched-telnetd-flaw-cve-2026-32746-enables-unauthenticated-root-rce","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/18\/critical-unpatched-telnetd-flaw-cve-2026-32746-enables-unauthenticated-root-rce\/","title":{"rendered":"Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE"},"content":{"rendered":"<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/critical-telnetd-flaw-cve-2026-32746.html\">Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE<\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/critical-telnetd-flaw-cve-2026-32746.html\">https:\/\/thehackernews.com\/2026\/03\/critical-telnetd-flaw-cve-2026-32746.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-18 01:07:00<\/a><\/p>\n<p>Source Domain: <a href=\"thehackernews.com\">thehackernews.com<\/a><\/p>\n<p><span class=\"p-author\">\ue804<span class=\"author\">Ravie Lakshmanan<\/span>\ue802<span class=\"author\">Mar 18, 2026<\/span><\/span><span class=\"p-tags\">Vulnerability \/ Data Protection<\/span><\/p>\n<p>Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an unauthenticated remote attacker to execute arbitrary code with elevated privileges.<\/p>\n<p>The vulnerability, tracked as <strong>CVE-2026-32746<\/strong>, carries a CVSS score of 9.8 out of 10.0. It has been described as a case of out-of-bounds write in the LINEMODE Set Local Characters (SLC) suboption handler that results in a buffer overflow, ultimately paving the way for code execution.<\/p>\n<p>Israeli cybersecurity company Dream, which discovered and reported the flaw on March 11, 2026, said it affects all versions of the Telnet service implementation through 2.7. A fix for the vulnerability is expected to be available no later than April 1, 2026.<\/p>\n<p>&#8220;An unauthenticated remote attacker can exploit this by sending a specially crafted message during the initial connection handshake \u2014 before any login prompt appears,&#8221; Dream said in an alert. &#8220;Successful exploitation can result in remote code execution as root.&#8221;<\/p>\n<p>&#8220;A single network connection to port 23 is sufficient to trigger the vulnerability. No credentials, no user interaction, and no special network position are required.&#8221;<\/p>\n<p><iframe loading=\"lazy\" title=\"Telnetd Flaw (CVE-2026-32746) PoC\" width=\"640\" height=\"360\" src=\"https:\/\/www.youtube.com\/embed\/18rSQfBABeE?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe><\/p>\n<p>The SLC handler, per Dream, processes option negotiation during the Telnet protocol handshake. But given that the flaw can be triggered before authentication, an attacker can weaponize it immediately after establishing a connection by sending specially crafted protocol messages.<\/p>\n<p>Successful exploitation could result in complete system compromise if telnetd runs with root privileges. This, in turn, could open the door to various post-exploitation actions, including the deployment of persistent backdoors, data exfiltration, and lateral movement by using the compromised hosts as pivot points.<\/p>\n<p>&#8220;An unauthenticated attacker can trigger it by connecting to port&#8230;<\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/03\/critical-telnetd-flaw-cve-2026-32746.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE https:\/\/thehackernews.com\/2026\/03\/critical-telnetd-flaw-cve-2026-32746.html Publish Date: 2026-03-18 01:07:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":224954,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhm7eXnUZ_n354WSYj7Qjrk3sBFZkhyQ41VtRezIQRVo3KqzZJDE_A7CqshkkQ6RCiOyS1zuS8liODqSRGhURLUozRKEDZ6BmKyOxBVy8K0EF5TQB5QlyC7c1Cv0mHSj0BNwtGAS-PgOUobvSWJ1b82qWBHCMEocTyoOayx69DzM_gveQSuD1zbjYAjziX7\/s1600\/linux.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,31,27],"class_list":["post-224953","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-exploit","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224953"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=224953"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224953\/revisions"}],"predecessor-version":[{"id":224955,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224953\/revisions\/224955"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/224954"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=224953"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=224953"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=224953"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}