CVE-2026-32746

CRITICAL SEVERITY

CVSS Score & Metrics

Base Score

9.8 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption handler because add_slc does not check whether the buffer is full.

Vulnerability Details

Published Date

March 13, 2026

Last Modified

March 19, 2026

CWE ID

CWE-120

Source

NVD

Vendor

GNU

Product

inetutils

External References

https://lists.gnu.org/archive/html/bug-inetutils/2026-03/msg00031.html
https://www.openwall.com/lists/oss-security/2026/03/12/4

CVE-2026-32746

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment