Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

CVE-2026-32746

Critical Telnet flaw allows pre-auth remote code execution as root

News, Research, Vulnerabilities

March 20, 2026

A Dream Security advisory disclosed CVE-2026-32746, a CVSS 9.8 buffer overflow in GNU inetutils telnetd that allows unauthenticated remote code execution as root. Maintainers were notified on March 11 and a patch was prepared the next day.
Critical pre-auth buffer overflow found in GNU InetUtils telnetd tracked as CVE-2026-32746

News, Research, Vulnerabilities

March 18, 2026

A pre-authentication buffer overflow in GNU InetUtils telnetd, tracked as CVE-2026-32746 and rated CVSS 9.8, can allow unauthenticated remote code execution as root. A fix is expected by April 1, 2026.

About
Editorial Policy
Privacy
Contact