A critical 11-year-old vulnerability (CVE-2026-24061) in the Telnet server allows trivial authentication bypass using a simple command: `USER='-f root' telnet -a [host_ip]`. The flaw exists in inetutils since version 1.9.3 and affects many unsupported IoT and embedded devices. Attackers can gain root access remotely or use it
Sort: